Chat now with support
Chat mit Support

One Identity Safeguard for Privileged Passwords 7.1.1 - Connect for Safeguard Assets User Guide

Downloading an Agent Enrollment token

The agent enrollment token (30 day sliding expiration with a 90 day limit) needs to be added to the folder.

To download an Agent Enrollment token

  1. On the Downloads page, click the Download button associated with the Agent Enrollment tile.

    The token.txt file will be downloaded according to your browser settings.

    CAUTION: Keep a copy of the enrollment token until the agent has been successfully enrolled. The token file will be automatically removed after each enrollment attempt (including failed attempts).

  2. Add the token.txt file to the unzipped folder downloaded as part of downloading an agent. For more information, see the following instructions depending on the type of agent being installed:

Re-enrolling an installed agent

Once the agent has been successfully enrolled, the Safeguard Disconnected Asset Agent will be installed under the service account along with a ConnectForSafeguardAssets certificate that is valid for 60 days. The agent will automatically attempt to renew the certificate after 30 days have passed since the last certificate was issued. However, if an agent is unable to re-enroll and the certificate expires, the re-enroll command can be used to re-enroll the agent.

To re-enroll an agent

  1. Download a new agent enrollment token. For more information, see Downloading an Agent Enrollment token

  2. Add the new agent enrollment token to the asset. For example, re-enrolling a Windows agent requires the new token be added to the ConnectForSafeguardWindowsAgent folder.

    CAUTION: Keep a copy of the enrollment token until the agent has been successfully re-enrolled. The token file will be automatically removed after each enrollment attempt (including failed attempts).

  3. Open a Command Prompt or PowerShell session.

  4. Run the reenroll command on ConnectForSafeguardAssetsAgent.

    After re-enrolling an agent, make sure the Agent ID is the same as shown in Safeguard for Privileged Passwords (Assets > (select asset) > Properties > Connection > (Edit) > StarlingAgentID). If the Agent ID is different, you need to update the StarlingAgentID in Safeguard for Privileged Passwords to match the Agent ID.

Removing an installed agent

The following instructions are for removing a previously installed agent. This will only remove the agent from the asset, no changes will be made to Safeguard for Privileged Passwords.

To remove an installed agent

  1. On the asset the agent is installed, open a Command Prompt or PowerShell session.

  2. Run the Remove command on ConnectForSafeguardAssetsAgent.

    Once the agent has been removed, you can either remove any corresponding assets within Safeguard for Privileged Passwords or enroll a new token (for more information, see Downloading an Agent Enrollment token).

Collaborators

Topics:
Verwandte Dokumente

The document was helpful.

Bewertung auswählen

I easily found the information I needed.

Bewertung auswählen