Install agents at scale

Xshield agents for Windows, Ubuntu, and RedHat OS families can be deployed at scale using the scale deployment scripts available in Xshield. Scale deployment is supported for all currently available versions of the Xshield agent.

Deployment scripts

Deployment scripts for scale deployments are available for download from the Settings > Agent Download page. The scripts work like a typical answer file used for 'silent' OS installations. The scripts contain the parameters required to install the agents and details for the assets to establish communication with the Xshield instance.

Prerequisites

  • Meet the prerequisites to install the Xshield agent on assets.

  • For Windows assets that use third-party Security solutions such as Symantec Endpoint Protection or Bitdefender Total Security, you must tune the Security configuration to install the agents and protect the assets with Xshield policies.

  • Prepare or use tested Ansible and/or GPO setups to run the deployment scripts.

Deploy Linux agents using Ansible scripts

Currently, deployment using Ansible is supported for RedHat and Ubuntu OS families.

  1. Go to Settings > Agent Download.

  2. Go to the Deployment Script tab.

  3. Select Ansible for the type of script and Linux platform (Ubuntu or RedHat).

  4. Select the version of the agent and click Download to download the Ansible script for the agent version you selected.

  5. Download the version of the agent for the Linux platform you selected (in Steps 3 and 4) from the Downloads tab.

  6. Follow the instructions on the page to deploy the agent using the script.

Deploy Windows agents using GPO

Use a CLI command or Windows PowerShell script to generate the Microsoft Installer (MSI) and Microsoft Transform (MST) files and create a Group Policy Object (GPO). Configure the GPO and link it to the appropriate Organizational Unit (OU) and install the agent.

  1. Go to Settings > Agent Download.

  2. Go to the Deployment Script tab.

  3. Select GPO for the type of script and Workloads or Users.

  4. Select the version of the agent.

  5. Follow the instructions on the page.


Successful installation

Upon successful installation, the agent log file on the assets (  mtoken.log) logs the installation successful message. Also, upon successful registration (based on the Onboarding mode for the instance), the asset shows up as Reachable on the Assets page (State column).

Failed installation

Agent installations can fail if the prerequisites are not met. See installation issues for more details.

Did this answer your question? Thanks for the feedback There was a problem submitting your feedback. Please try again later.