This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
- Lansweeper Community
- Forums
- General Discussions
- remote work from home (wfh) no vpn
Options
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Mute
- Printer Friendly Page
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-05-2022
09:06 PM
- last edited
4 weeks ago
by
Mercedes_O
I have several thousand employees (6k+) that work remotely across the US. Most connect to the VPN, so I can deploy LSAgent to them. A subset never connect to the VPN, their roles do not require any internal resources.
We leverage Endpoint Central, but not every system has the agent installed, this is true for both VPN & non-VPN devices.
What is my best option to get LSAgent on their machine? They do not have local admin rights, so simply telling them to install the agent will not work.
I was hoping there was a one-time program that they could launch that would talk to my relay or cloud instance so I could then scan and install the agent on.
Labels:
- Labels:
-
Scanning
2 REPLIES 2
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎04-14-2023 07:07 PM
Good day, @TechArch. I know this thread is aged a bit and you probably found a solution. I wanted to post what I did for my company. The caveat is that the computers must connect to the VPN and stay connected for a bit of time so that group policy updates are requested, and at that point the policy will install. So for users that are truly remote and have no need for local resources, they are directed via email to "connect to the VPN and leave it running for all of today."
This is a PowerShell script that is deployed through a Group Policy Preference to the computers that we add to an AD group that is listed within the Security Filter of the policy.
$LsAgentVerifyFile = "${Env:ProgramFiles(x86)}\LansweeperAgent\LansweeperAgentService.exe"
$LocalLogFolder = "$ENV:windir\Temp\Lansweeper"
$RemoteLogFolder = "\\OurFileServer\OurShare\Lansweeper LsAgent installation\logs"
if (Test-Path $LocalLogFolder) {
Write-Output "$((Get-Date).ToString()) - Started LsAgent check on $ENV:computername." >> "$LocalLogFolder\LsAgent_install.log"
Write-Output "$((Get-Date).ToString()) - Started LsAgent check on $ENV:computername." >> "$RemoteLogFolder\$ENV:computername.log"
}
else
{
# The folder does not already exist, create the folder.
New-Item $LocalLogFolder -ItemType Directory
Write-Output "$((Get-Date).ToString()) - Started LsAgent check on $ENV:computername." >> "$LocalLogFolder\LsAgent_install.log"
Write-Output "$((Get-Date).ToString()) - Started LsAgent check on $ENV:computername." >> "$RemoteLogFolder\$ENV:computername.log"
}
# If LsAgent doesn't already exist, attempt the installation.
if (-not(Test-Path -Path $LsAgentVerifyFile -PathType Leaf)) {
try {
# Download and install LsAgent using a silent installation routine.
Write-Output "The Lansweeper LsAgent service is being downloaded and installed. This will take a moment."
Invoke-WebRequest -Uri "https://content.lansweeper.com/LsAgent-windows/" -OutFile "$ENV:windir\TEMP\LsAgent-windows.exe"; Start-Process -FilePath "$ENV:windir\TEMP\LsAgent-windows.exe" -ArgumentList "--mode unattended --server OurScanServerHostname --agentkey OurAgentRelayKey" -Wait
Write-Output "$((Get-Date).ToString()) - Completed LsAgent installation on $ENV:computername." >> "$LocalLogFolder\LsAgent_install.log"
Write-Output "$((Get-Date).ToString()) - Completed LsAgent installation on $ENV:computername." >> "$RemoteLogFolder\$ENV:computername.log"
}
catch {
throw $_.Exception.Message
}
}
# If LsAgent already exists, do not re-attempt the installation.
else {
Write-Output "$((Get-Date).ToString()) - Detected that LsAgent is already installed on $ENV:computername." >> "$LocalLogFolder\LsAgent_install.log"
Write-Output "$((Get-Date).ToString()) - Detected that LsAgent is already installed on $ENV:computername." >> "$RemoteLogFolder\$ENV:computername.log"
}This has been successful thus far. This is not a cure all as you can imagine, and some users will need to be encouraged to follow the directive to hop on the VPN for a while.
If you came up with your own solution, I'd love to hear about it. Thanks.
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎10-06-2022 05:12 PM
Hello there!
Unfortunately, we have no such one-time program, and our deployment module does require remote connectivity to deploy LsAgent, so that is not a solution for you either.
We hope that other customers chime in on how they worked around this.
New to Lansweeper?
Try Lansweeper For Free
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now
Related Content
- Home Page report in Reports & Analytics
- QR Code scanning issue in General Discussions
- Are people finding this Risk Insight vulnerability interface in LS Cloud remotely usable? in Product Discussions
- Remote control in Product Discussions
- Scanning Exclusions - Still returning in Assets in General Discussions
