[KB7730] Deploy the ESET Management Agent and the ESET endpoint product together (8.x)



Click to expand

This method is for local installations and an Admin should run it for the following reasons:

  • It requires user interaction on the client workstation
  • It requires a domain admin account (not a regular user account)
  • Users are able to extract the certificate passphrase on the client workstation because it is embedded in the .exe file

The ESET Management Agent can also be installed using Live Installer, deployed remotely or installed manually (a local installation of the ESET Management Agent only). Click for more options to deploy the ESET Management Agent.

The ESET Management Agent facilitates communication between client computers and other ESET PROTECT components such as the ESET PROTECT Server. ESET Management Agent must be installed on all client computers where other ESET PROTECT components or ESET endpoint/server products are installed.


ESET Server/Mail Security users

ESET Endpoint Security is selected in the example screenshots below. The process also applies to ESET Server/Mail Security (Windows Only) products. ESET Server/Mail Security users must select the product that applies to your system.

Create an All-in-one installation package in ESET PROTECT Web Console

Follow the instructions below to use ESET PROTECT to create an installation package including ESET Management Agent, ESET Windows endpoint/server products, Policy, License, and ESET PROTECT management configuration.

Silent installation

To run the installation with no user interaction, see  below.

  1. Click Quick Links → Other Deployment Options.
Figure 1-1
Click the image to view larger in new window 
  1. In the Local Deployment section, select Create All-in-one installer (Windows only) and then click Create Installer.
Figure 1-2
Click the image to view larger in new window 
  1. Under Package contents, select the check box next to Security product. If you have an active ESET Full Disk Encryption license, you can select the check box next to Full Disk Encryption. Deselect the check box next to Participate in product improvement program if you do not agree to send crash reports and telemetry data to ESET.
Figure 1-3
Click the image to view larger in new window 
Include ESET Enterprise Inspector Agent in the Installer

To include Enterprise Inspector Agent in the installer, click Enterprise Inspector Agent and click Select or Create. For more information on configuring Enterprise Inspector Agent to run with your ESET endpoint product, visit our Online Help topic.

Figure 1-4
Click the image to view larger in new window
  1. Click Security Product. In this section you can:
    • Select the license.
    • Click the list of products under Product/Version and select an ESET endpoint/server product.
    • Language (optional) - Select another language of the installer wizard.
    • Configuration Policy (optional) - Select a policy that will be applied to the ESET security product.
    • Select the check box next to I accept the terms of the application End User License Agreement and acknowledge the Privacy Policy.
Only ESET endpoint products version 6.4 and later will allow automatic product activation

If you choose version 6.3 or earlier products, automatic product activation will not work and you will have to activate the product later. ESET endpoint products version 6.4 and later will be automatically activated during the installation.

Figure 1-5
Click the image to view larger in new window 
  1. If you specified a passphrase during the ESET PROTECT installation, click Certificate and type in your Certificate passphrase.
Figure 1-6
Click the image to view larger in new window 
  1. Click Advanced. In this section you can:
    • Set the Name, Description, Tags and a Parent group for the installer.
    • Select the check box next to Enable ESET AV Remover to include ESET AV Remover in the installer.
    • In the Initial installer configuration, select a policy that will be applied to the ESET Management Agent.
    • Server hostname and Port are automatically selected for you.
    • If you use an HTTP Proxy: Select the check box next to Enable HTTP Proxy settings and type the required details (Server, Port, Login, Password).
Figure 1-7
Click the image to view larger in new window 
  1.  Click Finish and click the download for 32-bit, 64-bit or ARM64 version depending on your system. 
Figure 1-8
Click the image to view larger in new window 
  1. Save the file to a shared location and access it from the client computer where it will be installed.

  2. Run the All-in-one installation package file, for example, PROTECT_Installer_x64_en_US.exe on the client computer to start the Setup Wizard using a domain Administrator account. 


ESET Server/Mail Security users must restart the server after the upgrade is complete.

For illustrated instructions for the Setup Wizard, see the ESET Package Installer Online Help topic.

Perform silent mode installation with the All-in-one installation package

You can install an All-in-one installation package generated from the ESET PROTECT Web Console on the client device without user interaction (silent mode). Make sure the following requirements are met before using this method: 

  • Store the installation package locally on the designated device
  • Perform the silent installation on an account with administrator privileges
  • We recommend that you run the command prompt as an administrator
  • Use the .exe installer type

If all of the above requirements are met, follow the steps below to perform a silent install:

  1. Navigate in the command line to the installation package location.
  2. Execute the installation package with the --silent and --accepteula parameters, for example, C:\Users\Admin\Downloads\PROTECT_Installer_x64_en_US.exe --silent --accepteula.

    If you enabled ESET AV Remover during the creation of the All-in-one installation package, you can now use the parameter --avr-disable to disable the ESET AV Remover, for example, C:\Users\Admin\Downloads\PROTECT_Installer_x64_en_US.exe --silent --accepteula --avr-disable.

  3. The installation will now proceed in silent mode (no window or progress bar will appear during the installation).
  4. The package will be installed with default settings.
Settings for silent installation

By default, when performing a silent installation the following settings will be used:

  • The EULA is accepted
  • ESET LiveGrid is enabled
  • Detection of potentially unwanted applications is disabled.

These default settings can be changed after the installation is completed. They can also be modified in your installation package during Configuration. In the Configuration type field, you can Select configuration from the list of policies. Select a policy for ESET Management Agent and a policy for your ESET security product (you cannot create a new policy at this point).

Zusätzliche Hilfestellung