Step-by-Step Deployment Guide

1. Prepare the Netlogon Folder

1. On a Domain Controller, navigate to the Netlogon folder.
2. Create a folder named CYRISMA.
3. Ensure this folder replicates across all domain controllers in the network.

2. Add the CYRISMA Installer

1. Download CYRISMA_Setup.exe from the CYRISMA portal.
2. Place the downloaded file in the CYRISMA folder under Netlogon.

3. Create the Installation Script

1. In the CYRISMA folder, create a batch file named cyrisma_install.cmd.
2. Use one of the following script templates depending on your provisioning preference.

Batch script without auto provisioning (manual provisioning required)

:: Check if CYRISMA Agent is already installed
sc query state= all | findstr /C:"SERVICE_NAME: Cyrisma_Agent"
if %ERRORLEVEL% gtr 0 (
    copy \\[dcServerName]\netlogon\CYRISMA\CYRISMA_Setup.exe %temp%
    %temp%\CYRISMA_Setup.exe /verysilent /key=XXXX-XXXX-XXXX /url=https://ccXXXXX.cyrisma.com
)

Batch script with auto provisioning (optional)

This version automatically provisions the agent, skipping the manual provisioning step.

:: Check if CYRISMA Agent is already installed
sc query state= all | findstr /C:"SERVICE_NAME: Cyrisma_Agent"
if %ERRORLEVEL% gtr 0 (
    copy \\[dcServerName]\netlogon\CYRISMA\CYRISMA_Setup.exe %temp%
    %temp%\CYRISMA_Setup.exe /verysilent /key=XXXX-XXXX-XXXX /url=https://ccXXXXX.cyrisma.com /autoprovision=yes
)

Replace the placeholders in the script:

• [dcServerName] with the name of your domain controller.
• XXXX-XXXX-XXXX with your CYRISMA license key.
• https://ccXXXXX.cyrisma.com with your CYRISMA portal URL.

4. Create a Group Policy Object (GPO)

1. Log in to the Domain Controller.
2. Open Group Policy Management.
3. Create a new GPO named CYRISMA Deployment at the root of the domain.

5. Configure GPO Permissions

Assign Read and Execute rights to Authenticated Users or a designated group for the new GPO.

6. Add the Batch File to the GPO

1. Open the newly created GPO for editing.
2. Navigate to Computer Configuration > Policies > Windows Settings > Scripts (Startup/Shutdown).
3. In the right pane, double-click Startup.
4. In the Startup Properties window, click Add.
5. Browse to the location of the batch file created in step 3:

\\[dcServerName]\Netlogon\CYRISMA\cyrisma_install.cmd

1. Select the batch file, click Open, then OK.
2. Click Apply and OK to save the configuration.

Verification Steps

Replicate GPO Across Domain Controllers

To ensure the new GPO is applied, run the following command:

gpupdate /force

Test Installation

1. Log in to a domain-managed machine.
2. Check if the CYRISMA agent is installed and running.
3. Open Services Manager (services.msc) and verify the CYRISMA service is running.

Monitor Logs

• Review system logs to confirm successful installation.
• Check for errors and troubleshoot as needed.

Key Notes

• Ensure the CYRISMA folder replicates properly across all domain controllers.
• Verify that authenticated users or deployment groups have the correct permissions.
• Update the batch file if the installer location, license key, or URL changes.
• If using auto provisioning, the agent will automatically pair with the instance without manual intervention.
• Be cautious with auto provisioning in environments with multiple instances to prevent unintended installations.
• Keep the license key and URL updated to avoid disruptions.

Deployment Guide

For detailed instructions on deploying CYRISMA Agents via GPO, refer to the comprehensive guide linked below.