Agent Configuration

Agent Configuration

Agent-based scanning is supported for Windows, Linux, and Mac machines. Before proceeding with an agent-based scan, Endpoint Central has to be installed. Click here to learn more.  

Configure Endpoint Central agent settings in AssetExplorer under Admin > Discovery > Agent Configuration.
Role Required: SDAdmin

Server IP Address  
This shows the IP Address of the computer hosting the Endpoint Central server. Agents on client computers use this IP Address to communicate with the server.
  1. Automatically detect and save the IP Address changes: Select this option to have Endpoint Central automatically detect and save the server's IP Address upon startup.
 
Public IP Address 
For users who periodically travel and may not have their laptops on the corporate network for scanning, configure a public IP address for agents to reach the Endpoint Central server.
If your public IP address is x.x.x.x and you've installed the Endpoint Central server with the private IP address y.y.y.y using default communication ports 8020 or 8383 and 8027, consider mapping your public and private IP addresses to a common FQDN in your DNS to minimize bandwidth consumption. For instance, if your FQDN is product.server.com, map it to both your public (x.x.x.x) and private (y.y.y.y) IP addresses.

Refer here for the Endpoint Central port details.

Agent Security Settings 
  1. Restrict users from uninstalling the agent from control panel: Selecting this option prevents users from uninstalling the Endpoint Central agents from their computers. 
  2. Restricting users from stopping the Agent service: Enabling this option prevents users from manually stopping the Endpoint Central agent service.
  3. Enable certificate-based authentication for agent-server communication: Enhance security by certificate-based authentication for agent-server communication. Enabling this option in AssetExplorer will also enable it in Endpoint Central. Click here to know more.
  4. Enable Agent Server Trusted Communication: This option enables trusted communication between the agent and the server. Before enabling this setting, a valid third-party SSL certificate must be applied in Endpoint Central. Click here for the steps to configure SSL certificate in Endpoint Central. Click here to know more about trusted agent-server communication.
Once this setting is enabled, it cannot be disabled again as the agents will fail to communicate with the server.

Remote Control Settings 
  1. Prompt for end-user confirmation to initiate Remote Control: Selecting this option sends a message to users asking for permission to connect to their computers remotely. Endpoint Central will then request the user's approval for a remote connection, which will only be established if approved within 30 seconds. If no approval is given within 30 seconds, the remote connection will not be automatically established.
  2. Show confirmation in locked and logged off computers: If a user is not logged in, the remote connection is established by default without waiting for user confirmation. However, you can choose to enable user confirmation on locked and logged off computers by selecting this option.
  3. Notify end users about remote connection: Enable this to notify end users whenever a remote session is initiated on their machine. You can also decide whether to allow or restrict users to disconnect the session.
  4. Enable idle session settings: Set a time limit to disconnect the session or disconnect and lock the system after a period of inactivity.



    • Related Articles

    • Linux Agent

      Role Required: Administrator Refer here for a list of supported Linux OS versions. Install Linux Agent Manually The SSH port (port 22) should be open on the computers where the agent needs to be installed. To install an agent on a Linux Computer ...

    • Mac Agent

      Role Required: Administrator Refer here for a list of the supported Mac OS versions. Install Mac Agent Manually Follow the steps mentioned below to install the Mac agent manually, Install the Endpoint Central agent on the computer intended for ...

    • Windows Agent

      Role Required: Administrator Refer here for a list of the supported Windows OS versions. Manually Install an Endpoint Central Agent on Windows The following steps guide you on how to deploy an agent on a single Windows computer manually. Download the ...

    • Agent-Based Scan

      How does an agent-based scan work? Refer to the following link: UEM Agent What are the OS supported in the agent-based scan? The following Windows OS versions are supported: Windows 10 Windows 8.1 Windows 8 Windows 7 Windows Vista Windows XP* ...

    • FAQs on Agent-Based Scan

      How does an agent-based scan work? Please refer to this link for more details. What is the OS supported in the agent-based scan? Windows OS Windows Server OS MAC Linux Windows 11 Windows 10 Windows 8.1 Windows 8 Windows 7 Windows Vista Windows XP ...