Activate the agent
Before the installed agent can protect its computer or be converted to a relay, you must activate the agent with Deep Security Manager. Activation registers the agent with the manager during an initial communication. To do this, you can either:
- Activate the agent from the manager. Go to Computers, right-click the computer whose agent
or applianceyou want to activate or reactivate and select Actions > Activate/Reactivate. (Alternatively, click Activate or Reactivate in the computer's Details window.)
- Activate the agent on the agent. Run this command:
dsa_control -a dsm://<dsm_host_or_IP>:<port>/
<dsm_host_or_IP> is replaced with the Deep Security Manager hostname or IP address, and
<port> is replaced with the Deep Security Manager heartbeat port, which is 4120, by default.
For details on this command, see Command-line basics.
- Activate the agent through a deployment script. See Use deployment scripts to add and protect computers for details.
- Activate the agent through an event-based task ("Computer Created (by System)" event) to automatically activate computers when they connect to the manager or when the manager syncs with an LDAP directory, cloud account, or vCenter. For more information, see Automatically perform tasks when a computer is added or changed.
Before activation, the agent
- No Agent
/Appliance: Indicates one of the following situations:
- No agent
or applianceis running or listening on the default port.
- An agent
or applianceis installed and running but is working with another manager and communications are configured as agent /appliance-initiated. In this case, the agent or applianceis not listening for this manager. To correct this situation, deactivate the agent from the computer.
- No agent
- Activation Required: The agent
or applianceis installed and listening, and is ready to be activated by the manager.
- Reactivation Required: The agent
or applianceis installed and listening and is waiting to be reactivated by the manager.
- Deactivation Required: The agent
or applianceis installed and listening, but has already been activated by another manager.
- Unknown: The computer has been imported (as part of an imported Computers list) without state information, or has been added by way of an LDAP directory discovery process.
After a successful activation, the agent
Deactivate the agent
If you want to transfer control of a computer from one Deep Security Manager installation to another, you must deactivate the agent
You can normally deactivate the agent
To deactivate the agent on Windows:
- From a command line, change to the agent directory (Default is C:\Program Files\Trend Micro\Deep Security Agent)
- Run the following: dsa_control -r
To deactivate the agent on Linux:
- Run the following: /opt/ds_agent/dsa_control -r
Start or stop the agent
To start or stop the agent on Windows:
- Start: sc start ds_agent
- Stop: sc stop ds_agent
To start or stop the agent on Linux:
Using SysV init scripts:
- Start: /etc/init.d/ds_agent start
- Stop: /etc/init.d/ds_agent stop
Using systemd commands:
- Start: systemctl start ds_agent
- Stop: systemctl stop ds_agent
To start or stop the agent that is embedded on the Deep Security Virtual Appliance, see Start or stop the appliance.