Remote agent installation should be performed manually in the following cases:
Agent installation is typically performed using TCP/IP and only requires one port (900) to be open for connection from the remote computer to the InTrust Server. This is a configurable setting, as described in the Connection Between Remote Agents topic.
To install an agent, an administrator should follow the instructions provided in Installing Agents Manually.
A list of commands for agent deployment is provided below:
Installs the agent.
Establishes a connection between the agent and the specified InTrust server using the specified port.
After an agent is added, it will be named as follows:
The list of names that can be used to access the agent will also include the name given to site-processing agent (available in the site properties).
The display name will be the one with the highest priority. The priorities are assigned as follows (the highest is 10 - for the name of site-processing agent):
Registers (adds) an alias for the computer on the specified InTrust server (adds the alias to the list of names that can be used to access the agent & if the display name has not explicitly been set, then it updates the display name used by InTrust Manager to be the alias).
|-reauth||Forces the agent to re-authenticate with the specified InTrust server.|
Upgrades the agent to a newer version.
|-uninstall_for_upgrade||Removes the agent but does not delete the agent configuration|
The installation procedure is initiated by InTrust administrator and performed automatically on Windows Platform only. It requires TCP port 900 (configurable) to be open on InTrust server for agent-server communication, ICMP echo request to be allowed between InTrust server and agent, and the Server Windows service on agent to be available for InTrust server (see Microsoft KB article 832017 Service overview and network port requirements for the Windows Server system for details).
An administrator initiates the agent installation process by right-clicking on a site and selecting the Install Agents menu item.
The InTrust Server Service completes the installation by:
Automatic agent installation is performed in the same way as semi-automatic installation, except that the process is initiated not by an administrator but by any of the following:
Connections between remote agents and local agents are ALWAYS established by the remote agent; local agents never establish the connection
The default port for a connection between remote agents and local agent on InTrust Server is TCP port 900. This setting can be modified during InTrust Server setup, or by taking the following steps:
For other agents, the -add command should be used to restore communication (see Installing Agents Manually for details)
When the connection has been established, both the remote and local agents use the connection to send/receive data (there is no out-of-band communication).
The connection remains open until it is closed by: