Deploy Defender for IoT C based security agent for Linux

This guide explains how to install and deploy the Defender for IoT C-based security agent on Linux.

• Install
• Verify deployment
• Uninstall the agent
• Troubleshoot

Prerequisites

For other platforms and agent flavors, see Choose the right security agent.

1. To deploy the security agent, local admin rights are required on the machine you wish to install on (sudo).

2. Create a Defender-IoT-micro-agent for the device.

Installation

To install and deploy the security agent, use the following workflow:

1. Download the most recent version to your machine from GitHub.

2. Extract the contents of the package and navigate to the /src/installation folder.

3. Add running permissions to the InstallSecurityAgent script by running the following command:

   chmod +x InstallSecurityAgent.sh
   

4. Next, run:

   ./InstallSecurityAgent.sh -aui <authentication identity> -aum <authentication method> -f <file path> -hn <host name> -di <device id> -i
   

   See How to configure authentication for more information about authentication parameters.

This script performs the following function:

1. Installs prerequisites.

2. Adds a service user (with interactive sign-in disabled).

3. Installs the agent as a Daemon - assumes the device uses systemd for service management.

4. Configures the agent with the authentication parameters provided.

For additional help, run the script with the –help parameter:

./InstallSecurityAgent.sh --help

Uninstall the agent

To uninstall the agent, run the script with the –-uninstall parameter:

./InstallSecurityAgent.sh -–uninstall

Troubleshooting

Check the deployment status by running:

systemctl status ASCIoTAgent.service

Next steps

• Read the Defender for IoT service Overview
• Learn more about Defender for IoT What is agent-based solution for device builders
• Enable the service
• Read the Microsoft Defender for IoT agent frequently asked questions
• Understand security alerts