Configure OAuth Authentication for Agents Using Installer Activation Keys

Create Password Policies: Password Safe

Using BeyondInsight 24.1 or a later version, you can use installer activation keys to leverage OAuth authentication when configuring the integration between BeyondInsight and Endpoint Privilege Management (EPM) agents that support OAuth communications. Prior to this, the integration between EPM agents and BeyondInsight was certificate-based only. While certificate-based authentication is still available, the addition of OAuth authentication greatly simplifies the setup process.

OAuth authentication using Installer Activation Keys is planned for Discovery Agents in a future release of BeyondInsight.

  1. Go to Configuration > Authentication Management > Installer Activation Keys.

Installer Activation Keys for Agent OAuth authentication in BeyondInsight

  1. To use the key generated by the system:
    • Select System Generated Key.
    • Copy the installation command and use it when deploying the agent.
  2. To create a new installer key:
    • Click Create New Installer Activation Key +.
    • Enter a name for the key.
    • Click Create Activation Key.
    • Copy the installation command and use it when deploying the agent.

 

  • A maximum of 10 installer activation keys can be present at any one time, including the system generated key.
  • Keys can be deleted and new ones can be created as long as no more than 10 keys exist at once.
  • Once the endpoint communication is established with BeyondInsight, the activation key is no longer required. We recommend deleting it.
    • Having deleted it, if an endpoint stops working and has to be configured again, you must create a new installer activation key before uninstalling and reinstalling the client.