Install the insider risk agent

Overview

This article provides simplified instructions for installing the insider risk agent to endpoint devices.

Considerations

  • Devices on which you install the insider risk agent must meet the system requirements in Code42 platform hardware and software requirements.
  • To use this functionality, you must be assigned the Security Administrator role. 

  • Do not restore Code42 application files backed up from one device as a means to install the insider risk agent on a different device. Application files are unique to each device and cannot be transferred to a new device.

Windows

Follow these steps to build a command to install the insider risk agent on Windows devices. You use this command in your deployment tool (for example, Windows SCCM).

  1. Sign in to the Code42 console
  2. Download the Windows installer.
    1. Navigate to Administration > Agent Management > Downloads.
    2. Select the latest Windows installer and click the download Download icon link.
    3. Upload the installer file to your deployment tool.
      This will be the installer called in the first line of the command.
  3. Copy the deployment arguments from an Incydr deployment policy for Windows:
    1. Navigate to Administration > Agent Management > Deployment.
    2. Select the Default deployment policy.
      If a default deployment policy does not exist, select the deployment policy you want to use for the installation. 
    3. In the Details tab under Command Line Arguments, copy the Windows argument. It starts with DEPLOYMENT_URL and ends with /norestart.
  4. Create the command by placing the name of the installation file before the deployment arguments.
    The following command is an example. The command should be on one line with no line breaks:
    code42-aat_n.n.n.nn_win64.exe DEPLOYMENT_URL=https://console.us.code42.com DEPLOYMENT_POLICY_TOKEN=c42c42c42-4242-4242-4242-c42c42c42c42 DEPLOYMENT_SECRET=c42c42c42c42c42c42c42c42c42c42c42c42c42c42c= /install /quiet /norestart
    
  5. Submit the command to your deployment tool. 
    Run the installation in a system context. 

Verify the insider risk agent is installed

The insider risk agent is installed if the following file exists on the endpoint device:
C:\Program Files\Code42-AAT\code42-aat.exe

(Optional) Uninstall the insider risk agent from Windows devices

If you install the insider risk agent in error on an endpoint and need to remove it, use the following command to uninstall it:

"C:\Program Files\Code42-AAT\code42-aat-cli.exe" uninstall

Mac

Follow these steps to install the insider risk agent on Mac devices using your deployment tool (for example, Jamf Pro).

  1. Create a computer configuration profile to grant Code42 permissions to your macOS devices:
    1. Rather than creating your own with the PPPC Utility, use the sample computer configuration profile (for Incydr Professional, Enterprise, Horizon, and Gov F2).  
    2. Follow the instructions to add system extensions payload to the configuration profile
  2. Sign in to the Code42 console.
  3. Download the Mac installer.
    1. Navigate to Administration > Agent Management > Downloads.
    2. Select the latest Mac installer and click the download Download icon link. 
    3. Double-click the .dmg file to open it.
    4. Copy the Code42-AAT.pkg file that appears in the dialog.
    5. Upload the .pkg file to your deployment tool.
  4. Obtain a code42.deployment.properties file from an Incydr deployment policy for Mac:
    1. Navigate to Administration > Agent Management > Deployment.
    2. Select the Default policy.
      If a default deployment policy does not exist, select the deployment policy you want to use for the installation.
    3. In the Details tab under Deployment properties, click the Download properties file for Mac. You can also click Copy to clipboard to copy the deployment properties if you want to create your own file.
  5. Place the code42.deployment.properties file in the /tmp/ directory on endpoint devices. You can place the file on endpoints either before or after the computer configuration profile and package file are deployed.
    If you like, you can use a script to write the deployment properties obtained from Copy to clipboard in the previous step. The following command is an example:
    #!/bin/bash
    echo "DEPLOYMENT_URL=https://console.us.code42.com 
    DEPLOYMENT_POLICY_TOKEN=c42c42c42-4242-4242-4242-c42c42c42c42 
    DEPLOYMENT_SECRET=c42c42c42c42c42c42c42c42c42c42c42c42c42c42c=" > /tmp/code42.deployment.properties
    

    Replace everything inside the quotation marks with the deployment properties obtained using Copy to clipboard.

Verify the insider risk agent is installed

The insider risk agent is installed if the following file exists on the endpoint device:
/Applications/Code42-AAT.app

(Optional) Uninstall the insider risk agent from Mac devices

If you install the insider risk agent in error on an endpoint and need to remove it, see options and instructions for uninstalling.