A Recast Agent is a Windows service that runs as the local system. Agents are designed to be installed on every device within an organization.
Agent Uses
- Run actions on workgroup computers or on computers in untrusted domains
- Run actions on computers where the user does not have administrator permissions
- Run actions on computers that have more restrictive firewall rules in place
- Collect Endpoint Insights inventory data from devices
- Give users a way to self-elevate credentials with Privilege Manager
NOTE: An Agent Gateway is required for every 20K Recast Agents deployed.
To deploy a Recast Agent connected to your Recast Management Server:
1. Download the Recast Agent installer from the Recast Portal.
2. Run the installer.
3. Under Recast Agent Configuration, enter the Server Name and Server Port number for the Recast Management Server.
4. Click Test Connection to confirm that the Agent can connect to the Recast Management Server.
5. Click Install.
6. After Agent installation completes, click Finish to exit the installer.
Silent Agent Install
Add the RCTENTERPRISESERVER=https://<FQDN>:<Port> parameter to your install string, substituting the FQDN and port number for your Recast Management Server.
Example:
msiexec.exe /i "Recast Agent.msi" /qn /norestart RCTENTERPRISESERVER="https://RMS.RecastDomain.com:444" /L*V "%temp%\RecastAgentMSI.log"
NOTE: The default Recast Management Server port is 444. Inbound and outbound traffic over port 444 (or an alternative port you specify) must be enabled between the Recast Management Server and any device that has a Recast Agent in order for the Agent to be able to communicate with the server.
Connect Recast Agents to an Agent Gateway
Connect your Recast Agents to a specific Agent Gateway by adding the AGENTGATEWAY parameter to your install string.
Example:
msiexec.exe /i "Recast Agent.msi" /qn /norestart RCTENTERPRISESERVER="https://RMS.RecastDomain.com:444"
AGENTGATEWAY="https://agentgateway.dev.recastsoftware.com:444" /L*V "%temp%\RecastAgentMSI.log"The Recast Management Server Agents page shows all agents installed in your environment, as well as their software Version and whether they are Connected and/or Authorized.
NOTE: If an authorized agent doesn't appear to be Connected, Recast Management Server may not currently be able to connect to it, or a certificate on the client may not be functioning properly.
To edit an agent:
1. On the Recast Agents page, click the Edit icon to the right of the agent.
2. Edit agent details, such as the computer name or whether the agent is authorized.
3. Click Update.
Installed agents must be authorized before they can be used to run actions. The Recast Management Server will automatically approve any agents that connect from the same domain as the Recast Management Server. Agents connecting from a different domain (or from a workgroup computer) must be approved manually, unless you've edited the default setting to approve all agents automatically.
Approve an Agent Manually
To approve an agent manually in RMS:
1. On the Recast Agents page, click the Edit icon to the right of the agent you want to authorize.
2. In the Edit Recast Agent window, enable the Authorized checkbox and click Save.
Approve All Agents Automatically
You can choose to have your Recast Management Server automatically authorize all agents regardless of the domain where they're installed.
To approve all agents automatically:
1. In your Recast Management Server, navigate to Administration > Settings.
2. Under Recast Management Server, click the Edit icon to the right of Recast Agent Approval.
3. In the Change Setting window, choose Automatically Approve All Agents from the Value drop-down.
Deleting an agent on the Recast Agents page, removes it from the database and revokes the client certificate, but agent uninstallation must be done manually.
To delete an agent in RMS:
1. On the Recast Agents page, click the Delete icon to the right of the agent you want to remove.
2. In the Delete Recast Agent window, click Delete.