Need process to create a drive image with Data Center Security (DCS) agent already installed
***All steps described in reference to DCS agent; for SCSP agent the file paths will need to change as per agent installation directory***
Every installation of the Data Center Security client creates a unique agent ID to that installation when the IPS service first starts. If using a computer with the DCS client to create a drive image, and if that image is used to create clones of that computer on the same network, then each computer will have the same Agent ID. This can cause problems in the DCS Manager as the agents with the same ID will be considered duplicates.
You can prevent these problems by creating a drive image that does not have a DCS Client agent ID.
/etc/init.d/sisipsagent stop
/etc/init.d/sisidsagent stop
/etc/init.d/sisipsutil stop
To stop and start the DCS Agent services, you must use sisservicectrl.exe via CMD.
To stop the IPS Servicesisservicectrl.exe stop sisipsservice
To stop the IDS Servicesisservicectrl.exe stop sisidsservice
To stop the Utility Servicesisservicectrl.exe stop sisipsutil
To start the services use the same commands, but specify start instead of stop.
Once the image is deployed, make sure you have changed the hostname and IP prior to connect it to the network.
Once on the network, start the DCS services.
At this point, the agent should check in with the manager and get a new agent ID assigned.
If the system fails to show in the assets list, run "sisipsconfig.exe -forcereg" (./sisipsconfig.sh -forcereg on linux) to reset the agent ID.