Authenticate User Using Genian Agent ==================================== Policy Server communicates with the Agent to authenticate users on windows devices. Node Policy -------------------------------- #. Go to **Policy** in the top panel. #. Go to **Policy > Node Policy** in the left Policy panel. #. The authentication method must be selected as 'User Authentication' before agent authentication can be used on the endpoint. #. Select two-step authentication as needed. - See :doc:`/system/twostep-auth` Add the Agent Action to a Policy -------------------------------- #. Go to **Policy** in the top panel. #. Go to **Policy > Node Policy** in the left Policy panel. #. Click the **desired Policy ID** in Node Policy window. #. Find **Agent Action**. Click **Assign**. #. Find **Authenticate User Using Genian Agent** in the **Available** section. Select and drag it into the **Selected** section. #. Click **Add.** #. Click **Update.** Authenticate User Using Genian Agent ------------------------------------ #. Go to **Policy** in the top panel. #. Go to **Policy > Node Policy > Agent Action** in the left Policy panel. #. Find and click **Authenticate User Using Genian Agent** in the Agent Action window. #. Enter in **Conditions**, optional settings. Under **Agent Authentication Dialog Box Design:** #. For **Window Image**, Specify an image for the Agent authentication dialog box. #. For **Displaying Titlebar**, Specify whether to display a title bar on the Agent authentication dialog box. #. For **Dialog Box Color**, Specify a dialog box background color. #. For **Font Color**, Specify a font color. #. For **Help Message**, Specify a Help Message. #. For **URL Button**, Specify a link to embed in the authentication window, and a button caption. #. For **Login Button Background Color**, Specify a Login button background color. #. For **Login Button Font Color**, Specify a Login button font color. Under **Miscellaneous:** #. For **Authentication Enforcement**, Specify whether to enforce an authentication by disabling the close action for the Agent Authentication dialog box. #. For **Program Run after Authentication**, Add a program that is run after a user is successfully authenticated. <<<<<<< .working #. Click **Update.** ||||||| .merge-left.r141338 [ Settings ] +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Item Name | Setting Item | Description | Remarks | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | File Path | Enter target file path | Specify the file path to which information will be delivered | %SystemDrive% "Windows installation drive" | | | | | Ex) "C:\\" | | | | +-------------------------------------------------------------------------------------------+ | | | | %WinDir% "Windows installation folder" | | | | | Ex) "C:\\Windows" | | | | +-------------------------------------------------------------------------------------------+ | | | | %SystemDir% "Windows system folder" | | | | | Ex) "C:\\Windows\\System32" | | | | +-------------------------------------------------------------------------------------------+ | | | | %ProgramFiles% "Windows program installation folder" | | | | | Ex) "C:\\Program Files" | | | | +-------------------------------------------------------------------------------------------+ | | | | %UserDir% "Windows user folder" | | | | | Ex) "C:\\Documents and Settings\\Administrator" | | | | +-------------------------------------------------------------------------------------------+ | | | | %Temp% "Windows temporary folder" | | | | | Ex) "C:\\Documents and Settings\\Administrator\\Local Settings\\Temp" | | | | +-------------------------------------------------------------------------------------------+ | | | | %TempInternet% "Temporary internet files folder" | | | | | Ex) "C:\\Documents and Settings\\Administrator\\Local Settings\\Temporary Internet Files" | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Run Options | Enter file run options | Options to use when running the file | Option "{AUTH_ID}" will be replaced with input ID, "{AUTH_PWD}" with input password | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Encryption | None | Encrypt the run options when executing the file | When using an encryption option other than BASE64, | | Method +-------------------------------+ | it will be additionally encoded as BASE64 | | | Base64 | | | | +-------------------------------+ | | | | AES | | | | +-------------------------------+ | | | | Blowfish | | | | +-------------------------------+ | | | | CAST | | | | +-------------------------------+ | | | | SEED | | | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Encryption Key | Enter key | Enter the encryption key if required by the encryption method | Use only the key length required by the encryption method | | | to use for encryption | +-------------------------------------------------------------------------------------------+ | | | | If the entered key is short, the rest will be filled with 0 | | | | +-------------------------------------------------------------------------------------------+ | | | | The initialization vector value is set to 0 | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ #. Click the Add button under **File Path** to add the file information to be executed after authentication, then enter the file path. #. Enter the **Run Options**. #. Select the **Encryption Method**. #. Enter **the Encryption Key**. #. Select **the Encryption Target**. #. Click the **Add** button. - If there are additional files to be executed after authentication, click the **Add** button to add them. - To modify the options for a file to be executed after authentication, click the **file path** of the corresponding item to edit it. - Click the **Modify** button at the bottom to complete the action settings. #. Go to **Policy > Node Policy** in the left Policy panel. #. Click the **desired Policy ID** in Node Policy window. #. Find Agent Action. Click Assign. #. Find **Authenticate User Using Genian Agent** in the **Available** section. Select and drag it into the **Selected** section. #. Click **Add.** #. Click **Update.**======= [ Settings ] +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Item Name | Setting Item | Description | Remarks | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | File Path | Enter target file path | Specify the file path to which information will be delivered | :doc:`File Path Macro Options ` | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Run Options | Enter file run options | Options to use when running the file | Option "{AUTH_ID}" will be replaced with input ID, "{AUTH_PWD}" with input password | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Encryption | None | Encrypt the run options when executing the file | When using an encryption option other than BASE64, | | Method +-------------------------------+ | it will be additionally encoded as BASE64 | | | Base64 | | | | +-------------------------------+ | | | | AES | | | | +-------------------------------+ | | | | Blowfish | | | | +-------------------------------+ | | | | CAST | | | | +-------------------------------+ | | | | SEED | | | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ | Encryption Key | Enter key | Enter the encryption key if required by the encryption method | Use only the key length required by the encryption method | | | to use for encryption | +-------------------------------------------------------------------------------------------+ | | | | If the entered key is short, the rest will be filled with 0 | | | | +-------------------------------------------------------------------------------------------+ | | | | The initialization vector value is set to 0 | +----------------+-------------------------------+---------------------------------------------------------------------+-------------------------------------------------------------------------------------------+ #. Click the Add button under **File Path** to add the file information to be executed after authentication, then enter the file path. #. Enter the **Run Options**. #. Select the **Encryption Method**. #. Enter **the Encryption Key**. #. Select **the Encryption Target**. #. Click the **Add** button. - If there are additional files to be executed after authentication, click the **Add** button to add them. - To modify the options for a file to be executed after authentication, click the **file path** of the corresponding item to edit it. - Click the **Modify** button at the bottom to complete the action settings. #. Go to **Policy > Node Policy** in the left Policy panel. #. Click the **desired Policy ID** in Node Policy window. #. Find Agent Action. Click Assign. #. Find **Authenticate User Using Genian Agent** in the **Available** section. Select and drag it into the **Selected** section. #. Click **Add.** #. Click **Update.**>>>>>>> .merge-right.r141339