Configuring Trusted Agent

Trusted Agent configuration requires steps on two networks and potentially multiple servers.

Good to Know:

  • You need separate Trusted Agent Hubs and shared keys for each CSM environment (development, test, and production, for example).
  • Each Trusted Agent Server makes one connection to each LDAP or Active Directory server. If you have multiple domains, you must install a Trusted Agent Server on each domain, but each server can connect to the same Trusted Agent Hub for its environment.
  • For server and operating system requirements, refer to the CSM System Requirements.
  • When you upgrade CSM, you must also upgrade all Trusted Agent Servers.

Process for SaaS Customers

To facilitate communications between CSM and your private resources, Cherwell configures the Trusted Agent Hub on Cherwell servers. You install and configure one or more Trusted Agent Servers on your network.

Configuration Task Task Location
1. Request a Trusted Agent Hub from Cherwell. Cherwell data center.
2. Install the Trusted Agent Server.

See Trusted Agent.

A server on the same network as your private resource.
3. Configure the Trusted Agent Server.

See Trusted Agent.

The same server where you installed the Trusted Agent Server on the same network as your private resource.
4. Grant Security rights to control access to Trusted Agent configuration options in CSM Administrator.

See Tools Security Rights.

From CSM Administrator.
5. Connect to the Trusted Agent Hub from CSM Administrator.

This step is required if you intend to use features that require configuration in CSM Administrator. These features include:

  • Importing external data using Trusted Agent
  • Scaling Trusted Agent for request routing
  • Importing Directory Service data Into Business Objects
  • Using email
  • Executing One-Step Actions on a remote network

See Trusted Agent.

From CSM Administrator.
6. Create Trusted Agent Service groups.

This step is required if you want to route requests to only specific Trusted Agent Services.

See Trusted Agent.

From CSM Administrator.

Process for On-premises Customers

On-premises customers configure all Trusted Agent components.

Configuration Task Task Location
1. Enable the Trusted Agent Hub.

See Trusted Agent.

On the server that runs the CSM Browser Client web application.

If you are using server farms, this task must be performed on each server.

2. Install the Trusted Agent Server.

See Trusted Agent.

A server on the same network as your private resource.
3. Configure the Trusted Agent Server.

See Trusted Agent.

The same server where you installed the Trusted Agent Server on the same network as your private resource.
4. Grant Security rights to control access to Trusted Agent configuration options in CSM Administrator.

See Tools Security Rights.

From CSM Administrator.
5. Connect to the Trusted Agent Hub from CSM Administrator.

This step is required if you intend to use features that require configuration in CSM Administrator. These features include:

  • Importing external data using Trusted Agent
  • Scaling Trusted Agent for request routing
  • Importing Directory Service data Into Business Objects
  • Using email
  • Executing One-Step Actions on a remote network

See Trusted Agent.

From CSM Administrator.
6. Create Trusted Agent Service groups.

This step is required if you want to route requests to only specific Trusted Agent Services.

See Trusted Agent.

From CSM Administrator.