Administrators can upload the on-demand agent executable file on Unified Access Gateway. This provides the option for the Horizon Client to automatically download and run the on-demand agent after the user has successfully authenticated.
For an understanding about the on-demand agent, see About OPSWAT MetaAccess on-demand agent.
Prerequisites
Locate the on-demand agent executable file on the relevant OPSWAT website and download the file to your system.
Content-Disposition header with the on-demand agent's file name as the value in the HTTP response.
Procedure
- For Windows platform, perform the following steps as mentioned.
- Select the File Upload Type.
- If you don't want to upload any file, select
None. Noneis the default value.
- If you don't want to upload any file, select
- Depending on the file upload type selected, enter the required information for uploading the on-demand agent on Unified Access Gateway.
Option Procedure Local - Locate and select the on-demand agent executable file that you have downloaded from OPSWAT.
- Enter the following additional information for the on-demand agent: Name and Parameters.
URL Reference - In the Agent File URL, enter the URL of the file server location from where Unified Access Gateway can download the on-demand agent executable file.
- Enter the following additional information for the agent: Name, Parameters, Agent URL ThumbPrints, Trusted Certificates, and Agent File refresh interval (secs)
The following information helps you understand the settings provided for uploading the on-demand agent to Unified Access Gateway:- Name
- Name of the on-demand agent executable file.
- Parameters
-
Command-line parameters used by the
Horizon Client to run the
on-demand agent on the endpoint.
For command-line parameters that can be used in the Parameters text box, see the relevant OPSWAT documentation.
- Agent URL Thumbprints
- Enter the list of Agent URL thumbprints. If you do not provide a list of thumbprints, ensure that the server certificates are issued by a trusted CA. Enter the hexadecimal thumbprint digits. For example, sha1= C3 89 A2 19 DC 7A 48 2B 85 1C 81 EC 5E 8F 6A 3C 33 F2 95 C3.
- Trusted Certificates
-
If the Agent URL server certificate is not issued by a trusted public CA, you can specify that certificate (in PEM format) to be trusted by Unified Access Gateway while communicating to the Agent URL for downloading the OPSWAT agent. This is an alternative to Agent URL Thumbprints.
To select a certificate in PEM format and add to the trust store, click +. To remove a certificate from the trust store, click -. By default, the alias name is the filename of the PEM certificate. To provide a different name, edit the alias text box.
- Agent File refresh interval (secs)
- The periodic time interval, in seconds, at which the on-demand agent executable file is fetched from the URL, which is specified in the Agent File URL text box.
- Click Save.
- Select the File Upload Type.
- For macOS platform, perform the following steps as mentioned.
- Select the File Upload Type.
If you don't want to upload any file, select
None. - Depending on the file upload type selected, enter the required information for uploading the on-demand agent on Unified Access Gateway.
Option Procedure Local - Select the on-demand agent executable file that you have downloaded from OPSWAT.
- Enter the following additional information for the on-demand agent: Name and Parameters.
- In the Path To Executable text box, enter the location of the on-demand agent executable file.
URL Reference - In the Agent File URL, enter the URL of the file server location from where Unified Access Gateway can download the on-demand agent.
- Enter the following additional information for the agent: Name, Parameters, Agent URL ThumbPrints, Trusted Certificates, and Agent File refresh interval (secs)
- In the Path To Executable text box, enter the location of the on-demand agent executable file.
The following information helps you understand the settings provided for uploading the on-demand agent to Unified Access Gateway:- Name
- Name of the on-demand agent executable file.
- Parameters
-
Command-line parameters used by the
Horizon Client to run the
on-demand agenton the endpoint.
For command-line parameters that can be used in the Parameters text box, see the relevant OPSWAT documentation.
- Agent URL Thumbprints
- Enter the list of Agent URL thumbprints. If you do not provide a list of thumbprints, ensure that the server certificates are issued by a trusted CA. Enter the hexadecimal thumbprint digits. For example, sha1= C3 89 A2 19 DC 7A 48 2B 85 1C 81 EC 5E 8F 6A 3C 33 F2 95 C3.
- Trusted Certificates
-
If the Agent URL server certificate is not issued by a trusted public CA, you can specify that certificate (in PEM format) to be trusted by Unified Access Gateway while communicating to the Agent URL for downloading the OPSWAT agent. This is an alternative to Agent URL Thumbprints.
To select a certificate in PEM format and add to the trust store, click +. To remove a certificate from the trust store, click -. By default, the alias name is the filename of the PEM certificate. To provide a different name, edit the alias text box.
- Agent File refresh interval
- The periodic time interval, in seconds, at which the on-demand agentexecutable file is fetched from the URL, which is specified in the Agent File URL text box.
- Path To Executable
-
Location of the
on-demand agent executable file.
For macOS endpoints, the on-demand agent file is bundled as a zip file. The executable file is present in the zip file. Horizon Client unzips the file and runs that executable on the endpoint from the location mentioned in this text box.
- Click Save.
- Select the File Upload Type.
