The Zen of Agent Deployment

The Zen of Agent Deployment

Glossary So far, we have set up the OCS Inventory NG central management server, but its database is lacking in content. The database without information is just as worthless as a deserted factory without employees and work to do. Agents will be serving the purpose of gathering inventory data, and then providing them to the OCS-NG management server.

In this chapter, our sole focus will be on agents. Thanks to the rather diversified operating system compatibility range, we have numerous scenarios to look into. There are also more than a few techniques to get these agents on the client machines.

It is important to realize the key differences in order to make the right decision that best fits the situation. Throughout this chapter, we will learn how to accomplish the following tasks: Rationalize what happens behind the scenes of agents Understand the differences between agent types Find out about the deployment modalities on various operating systems Decide the right agent type and deployment modality for your configuration Acquire step-by-step information on carrying out those deployment methods Comprehend the know-how of getting agents up and running not only on Windows, Linux, and Mac OS X client machines, but also on mobile devices. The Zen of Agent Deployment Behind the scenes: How agents earn their living The inventory software that runs on client machines is not called an agent just by pure coincidence. If we look up the definition of the noun "agent", we end up with something like this: a representative who acts on behalf of other persons or organizations..

No doubt, the inventory agent fulfils that status quo. The organization for which the agent works is the central management server. Their work is clearly defined; they gather information, and send them back to the central server.

They can also act as spies on identifying other hosts that are not inventoried. Network discovery is covered in 5, Investigating the Process of Gathering Inventory Data. Besides these tasks, the agent also serves as a key position with regards to package deployment.

When this situation occurs, the agent can ask for the file information from the deployment server, request the package, and prepare it for deployment execution. We have enumerated the tasks of agents in terms of priority. The first and foremost task is sending in the inventory data, if it is required to do so.

The task of identifying hosts that are not scanned from the network is the second most useful. It enhances network detection and reduces the bandwidth usage by adding distributed scanning into the mix. The server would otherwise be overwhelmed to scan the entire network, all by itself.

Package deployment is an optional feature of the OCS-NG inventory. In those configurations, where this functionality is not required, agents are not required to execute this task. In situations that are networked, there is some kind of connectivity between the agents and the central management server; the agents always initiate the contact first.

We can imagine this as the agent initiating the communication. This way, we do not need to open a port on the firewall and neither set up port forwarding. If browsing works, then this works too.

Communications happens through the HTTP and HTTPS protocols. On client machines, when the executables are monitored for outgoing traffic (by some kind of firewall), we might need to allow traffic to go back and forth from the OCS inventory agent file. After the agent contacts the central management server, it replies with the task(s) to do, just like the big boss of an organization for which the agent is secretly working for.

There are situations when there"s nothing to do for the agent, and in these cases, the central server does not assign any of the tasks. This means that there is no mission available..

