Deploy Agent Smith with Microsoft Intune

Generate Agent Smith script

Follow the instructions under the Provision agents section of the to generate the dynamic PowerShell configuration script. Your generated script will look something like this:

[Net.ServicePointManager]::SecurityProtocol = [Net.SecurityProtocolType]::Tls12
Set-ExecutionPolicy RemoteSigned
iwr ((irm {{ INSTALLER }}).assets|?{$_.name -eq \\\\"rewst_agent_config.win.exe\\\\"}|select -exp browser_download_url) -OutFile rewst_agent_config.win.exe
.\\\\\\\\rewst_agent_config.win.exe --config-url {{ ENGINE_URL }}/webhooks/custom/trigger/{{ trigger_id }}/{{ ORG.ATTRIBUTES.id }} --config-secret {{ CONFIG_SECRET }} --org-id {{ ORGID }}

Package using IntuneWin package

1. Create a PowerShell Install Script - install.ps1

   1. Create a clean folder structure for your application. Your folder should contain:

      1. Installer files: .ps1 in this case

      2. Optional PowerShell detection script

   Example folder structure:

AgentSmith
├── source
│   ├── install.ps1
├── scripts
│   └── DetectionScript.ps1
└── output

1. Create install.ps1 using the provided install script mentioned earlier.

2. Save the provided install script as install.ps1.

Create the IntuneWin package

Use Microsoft Win32 Content Prep Tool (IntuneWinAppUtil.exe) to complete the following.

1. Download IntuneWinAppUtil from .

2. Open a command prompt, either CMD or PowerShell.

3. Run the following command:

   • c: Source folder, which contains your installer files.

   • s: Powershell install script

   • o: Output directory for the .intunewin package.

   Copy

   IntuneWinAppUtil.exe -c "FOLDERLOCATION" -s "INSERTPOWERSHELLFILENAMEHERE" -o "OUTPUTFOLDER"

Example:

IntuneWinAppUtil.exe -c "C:\\AgentSmith\\source" -s "install.ps1" -o "C:\\AgentSmith\\output"

1. Upon completion, your .intunewin package will be generated in the specified output folder.

Use Microsoft Endpoint Manager to deploy

1. Sign in to the .

2. Navigate to Apps > Windows > + Add > Windows app (Win32).

3. Upload your .intunewin package (AgentSmithSetup.intunewin).

4. Fill out the Name, Description, and Publisher fields under the App information tab of the Add App menu.(The other fields are optional, you are welcome to fill them out if you’d like.)

5. Under the Program tab, paste the following into the relevant fields:

   1. Install command - replace install.ps1 with the name of the ps1 installer script you created earlier in the process:

      Copy

      powershell.exe -ExecutionPolicy Bypass -File install.ps1 

   2. Uninstall command:

      Copy

      powershell.exe -ExecutionPolicy Bypass -Command "Get-Service -Name 'AgentSmithService' -ErrorAction SilentlyContinue | Stop-Service -Force -ErrorAction SilentlyContinue; sc.exe delete 'AgentSmithService'"

   1. Install behavior: select System

6. Under the Requirements tab:

   1. Specify the Minimum operating system - Windows 10, Windows 11, etc.
   2. Specify the Operating system architecture - 32-bit or 64-bit.

1. Under the Detection Rules tab:

   1. Choose Manually configure detection rules from the drop-down selector.

   2. Add a rule.

   3. Set the Rule type to File.

   4. Set the Path to C:\Program Files\RewstRemoteAgent\

   5. Set File or folder to rewst_remote_agent_REPLACEWITHORGID.win.exe after replacing the placeholder ORGID.

   6. Set the Detection method to File or folder exists.

   7. Alternatively you can use a detection script such as the one provided in the

2. No alterations to the Dependencies or Supersedence tabs are needed. Under the Assignments tab:

   1. Assign the application to required groups, be they users or devices.

   2. Once your group is selected, the defaults here will work, but feel free to modify the settings to your comfort level.
3. Under the Review and Create tab:

   1. Confirm your settings.

   2. Click Create.

Additional considerations

• Deploy initially to a test group to verify the agent installs and detects correctly before wider distribution.

• Intune checkin times can be sporadic at times, app deployment times may take up to 48 hours.

• After clicking create, you’ll be brought to the App overview page where you can monitor deployment progress. Verify that the deployment completes.

Generate Agent Smith script

Ensure that you have your PowerShell script from the Provision agents section of your . Use a text editor such as VS Code to take this copied PowerShell script and save it as a .ps1 file.

Configure Intune PowerShell Script

1. Navigate to Devices > Scripts and remediations in Intune.

2. Click Platform Scripts > Add > Windows 10 and later to upload your PowerShell script.

3. Add the script in the screen that appears:

   1. Enter Agent Smith into the Name field under the Basics tab.

   2. Under the Script settings tab:

      1. If you are not signing your scripts, set Enforce script signature check is set to no.

Deploy via Intune

1. Assign the script to your target device or user groups under the Assignments tab.

2. Monitor deployment progress and status via the Intune portal.