Hi @sunshinetp
Sorry for the late reply, I missed this post when it was first posted and I’ve just found it while looking for a script to download and install an MSI package.
Regarding this specific point:
As far as I know, according to my own notes, at least since May 2019 the tokens generated for the ITSM package expire after 720 days. That’s not permanent, indeed, but it’s not a big deal to me to re-generate the tokens once every two years. Mind that this applies only to “Communication Client” packages only, if you are generating packages with the “Client Security” they might still expire after 90 days, due to the nature of the Security Client itself.
For reusing the downloaded ITSM agent installation package, this is very important to know: the file name is linked to the enrollment token, so the weird file name should not be changed under any circumstance or it will not be able to auto-enrol and it will ask for the token, host, and port. If you have renamed the MSI package, that’s why it was asking for the token…
Going a bit deeper into this topic, the “custom” MSI package is not custom at all: if you verify the checksum of different packages, you will find that the checksum is the same, only the filename is different. So, you could just keep note of the file names generated for your enrolment tokens, and then just download the generic package and rename it with the “tokenized” filename; it will install and auto-enrol the endpoint on the adequate Device Group.
In fact, this is what our deployment CMD script does: we have a single MSI package for all the entities, the deployment script just reads an environment variable that tells it which entity is being deployed, it then copies the MSI package to a temporary folder, rename the MSI package with the “tokenized” filename, runs the installation and at the end deletes the package from the temporary folder. With that simple trick, we are deploying a dozen different entities with a single MSI package.
Let me know if you still need help on this topic, I have a couple of tricks more that I can share if you need it.
Best regards,
– Javier Llorente
Endpoint Security, Devoteam