Configuring Trusted Agent
Trusted Agent configuration requires steps on two networks and potentially multiple servers.
Good to Know:
- You need separate Trusted Agent Hubs and shared keys for each CSM environment (development, test, and production, for example).
- Each Trusted Agent Server makes one connection to each LDAP or Active Directory server. If you have multiple domains, you must install a Trusted Agent Server on each domain, but each server can connect to the same Trusted Agent Hub for its environment.
- For server and operating system requirements, refer to the CSM System Requirements.
- When you upgrade CSM, you must also upgrade all Trusted Agent Servers.
Process for SaaS Customers
To facilitate communications between CSM and your private resources, Cherwell configures the Trusted Agent Hub on Cherwell servers. You install and configure one or more Trusted Agent Servers on your network.
Configuration Task | Task Location |
---|---|
1. Request a Trusted Agent Hub from Cherwell. | Cherwell data center. |
2. Install the Trusted Agent Server.
See Trusted Agent. |
A server on the same network as your private resource. |
3. Configure the Trusted Agent Server.
See Trusted Agent. |
The same server where you installed the Trusted Agent Server on the same network as your private resource. |
4. Grant Security rights to control access to Trusted Agent configuration options in CSM Administrator. | From CSM Administrator. |
5. Connect to the Trusted Agent Hub from CSM Administrator.
This step is required if you intend to use features that require configuration in CSM Administrator. These features include:
See Trusted Agent. |
From CSM Administrator. |
6. Create Trusted Agent Service groups.
This step is required if you want to route requests to only specific Trusted Agent Services. See Trusted Agent. |
From CSM Administrator. |
Process for On-premises Customers
On-premises customers configure all Trusted Agent components.
Configuration Task | Task Location |
---|---|
1. Enable the Trusted Agent Hub.
See Trusted Agent. |
On the server that runs the
CSM Browser Client
web application.
If you are using server farms, this task must be performed on each server. |
2. Install the Trusted Agent Server.
See Trusted Agent. |
A server on the same network as your private resource. |
3. Configure the Trusted Agent Server.
See Trusted Agent. |
The same server where you installed the Trusted Agent Server on the same network as your private resource. |
4. Grant Security rights to control access to Trusted Agent configuration options in CSM Administrator. | From CSM Administrator. |
5. Connect to the Trusted Agent Hub from
CSM Administrator.
This step is required if you intend to use features that require configuration in CSM Administrator. These features include:
See Trusted Agent. |
From CSM Administrator. |
6. Create Trusted Agent Service groups.
This step is required if you want to route requests to only specific Trusted Agent Services. See Trusted Agent. |
From CSM Administrator. |