|
|
Toll Free: (866) 407-5279 Direct: (651) 407-5279 |
|
|
|
Toll Free: (866) 407-5279 Direct: (651) 407-5279 |
|
Leaf-Agents support patch deployment to Windows targets over TCP/IP, using encrypted packets over user-specified Master-Agent/Leaf-Agent port assignments. Reliance on Windows RPC protocols and services is greatly reduced, and a secure environment for Master/Leaf communications and data transmission is created.
Using the Agent-Installer (part of the Console) "Leaf Agents" are either locally or remotely installed on hardened Windows targets (DMZ machines) where network services have been disabled, thus "Agentless" support is not possible, or on non-hardened clients where other Leaf-Agent features like "disconnected machine support" are desirable, or where the administrator is looking for performance advantages provided only by Leaf-Agents.
Leaf Agent advantages include:
Secure Master/Leaf connections
Encrypted packet traffic
User-definable ports
Independent patch downloading
Localized query and other intelligence, resulting in reduced network I/O
Disconnected Machine Support
Bandwidth Control
See "When should I use Leaf Agents" for links to more detail.
For Large Deployments of Leaf-Agents, see "Automated Creation of Batch File for Remote Leaf Agent Installation"
SecurityEXPERT can deploy settings to Windows Leaf-Agent targets. SecurityEXPERT contacts the Leaf-Agent to start the client-side SecurityEXPERT Executive process, then communicates with the Executive independently. In other words, it does not use the Leaf-Agent port or communication services for the target.
