63 lines
3.0 KiB
PowerShell
Executable File
63 lines
3.0 KiB
PowerShell
Executable File
<powershell>
|
|
#requires -version 4.0
|
|
|
|
# PowerShell 4 or up is required to run this script
|
|
# This script detects platform and architecture. It then downloads and installs the relevant Deep Security Agent package
|
|
|
|
if (-NOT ([Security.Principal.WindowsPrincipal] [Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole] "Administrator")) {
|
|
Write-Warning "You are not running as an Administrator. Please try again with admin privileges."
|
|
exit 1
|
|
}
|
|
|
|
$managerUrl="https://workload.de-1.cloudone.trendmicro.com:443/"
|
|
|
|
$env:LogPath = "$env:appdata\Trend Micro\Deep Security Agent\installer"
|
|
New-Item -path $env:LogPath -type directory
|
|
Start-Transcript -path "$env:LogPath\dsa_deploy.log" -append
|
|
|
|
echo "$(Get-Date -format T) - DSA download started"
|
|
if ( [intptr]::Size -eq 8 ) {
|
|
$sourceUrl=-join($managerUrl, "software/agent/Windows/x86_64/agent.msi") }
|
|
else {
|
|
$sourceUrl=-join($managerUrl, "software/agent/Windows/i386/agent.msi") }
|
|
echo "$(Get-Date -format T) - Download Deep Security Agent Package" $sourceUrl
|
|
|
|
$ACTIVATIONURL="dsm://agents.workload.de-1.cloudone.trendmicro.com:443/"
|
|
|
|
$WebClient = New-Object System.Net.WebClient
|
|
|
|
# Add agent version control info
|
|
$WebClient.Headers.Add("Agent-Version-Control", "on")
|
|
$WebClient.QueryString.Add("tenantID", "16055")
|
|
$WebClient.QueryString.Add("windowsVersion", (Get-CimInstance Win32_OperatingSystem).Version)
|
|
$WebClient.QueryString.Add("windowsProductType", (Get-CimInstance Win32_OperatingSystem).ProductType)
|
|
|
|
[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12;
|
|
|
|
Try
|
|
{
|
|
$WebClient.DownloadFile($sourceUrl, "$env:temp\agent.msi")
|
|
} Catch [System.Net.WebException]
|
|
{
|
|
echo " Please check that your Workload Security Manager TLS certificate is signed by a trusted root certificate authority."
|
|
exit 2;
|
|
}
|
|
|
|
if ( (Get-Item "$env:temp\agent.msi").length -eq 0 ) {
|
|
echo "Failed to download the Deep Security Agent. Please check if the package is imported into the Workload Security Manager. "
|
|
exit 1
|
|
}
|
|
echo "$(Get-Date -format T) - Downloaded File Size:" (Get-Item "$env:temp\agent.msi").length
|
|
|
|
echo "$(Get-Date -format T) - DSA install started"
|
|
echo "$(Get-Date -format T) - Installer Exit Code:" (Start-Process -FilePath msiexec -ArgumentList "/i $env:temp\agent.msi /qn ADDLOCAL=ALL /l*v `"$env:LogPath\dsa_install.log`"" -Wait -PassThru).ExitCode
|
|
echo "$(Get-Date -format T) - DSA activation started"
|
|
|
|
Start-Sleep -s 50
|
|
& $Env:ProgramFiles"\Trend Micro\Deep Security Agent\dsa_control" -r
|
|
& $Env:ProgramFiles"\Trend Micro\Deep Security Agent\dsa_control" -a $ACTIVATIONURL "tenantID:A81DBFF5-5CDE-EB5F-8F5D-EF3F75B718A1" "token:30F394D6-2CAB-DA5A-911D-62AD64593936" "policyid:35" "groupid:34"
|
|
#& $Env:ProgramFiles"\Trend Micro\Deep Security Agent\dsa_control" -a dsm://agents.workload.de-1.cloudone.trendmicro.com:443/ "tenantID:A81DBFF5-5CDE-EB5F-8F5D-EF3F75B718A1" "token:30F394D6-2CAB-DA5A-911D-62AD64593936" "policyid:35" "groupid:34"
|
|
Stop-Transcript
|
|
echo "$(Get-Date -format T) - DSA Deployment Finished"
|
|
</powershell>
|