Breadcrumbs

Installing the ASGARD Agent Manually

Last update:
Last verified version: AMC 3.2.1

This article explains how to manually install the ASGARD agent. For example, this method can bypass CIS benchmark restrictions that block executions from the /var/tmp partition.

The following instructions apply to Rocky Linux 9 with SELinux enabled.

  1. Upload the appropriate RPM package, downloaded from your ASGARD Management Center, to your asset's root folder.

  2. Unpack the RPM package:

Bash
su
cd /root
rpm2cpio asgard2-agent-linux-amd64.rpm | cpio -idmv

  1. Copy the unpacked files into their designated directories:

Bash
cp -a usr/. /usr/
cp -a var/. /var/

  1. Set SELinux to permissive mode (if active) and clear the SELinux audit log:

Bash
setenforce 0
truncate -s 0 /var/log/audit/audit.log

  1. Install the asgard2 service and verify it is running:

Bash
var/lib/asgard2-agent/asgard2-agent -install
systemctl status asgard2-agent.service
image-20260209-154649.png
Active ASGARD agent in Rocky Linux

  1. Install the asgard2 service and check if he is running:

# var/lib/asgard2-agent/asgard2-agent -install
# systemctl status asgard2-agent.service

  1. Run SELinux audit to check the issues in the audit file:

# audit2allow -w -a
image-20260209-154720.png
Result of SELinux audit

  1. Create a SELinux policy for the asgard2-agent.service and enable it:

# cat /var/log/audit/audit.log | grep AVC | grep denied | tail -1 | audit2allow -M asgard2-agent-service
# semodule -i asgard2-agent-service.pp

  1. Initiate the relabeling of the whole system files and reboot the system:

# touch /.autorelabel
# reboot

  1. Check if the asset requests the access to your AMC:

image-20260209-154818.png
Asset request in AMC for the newly installed Agent

  1. Perform a test scan

Please note the agent uninstallation requires manual execution:
https://asgard-manual.nextron-systems.com/en/latest/administration/uninstall.html#uninstall-asgard-agents-on-linux