Skip to content

[CON-287] Reorg agent manual install docs into a single page #457

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 5 commits into
base: main
Choose a base branch
from
Open

[CON-287] Reorg agent manual install docs into a single page #457

wants to merge 5 commits into from
+202 −72

Conversation

@tashian
Copy link
Contributor

@tashian tashian commented Nov 17, 2025

No description provided.

@tashian tashian requested a review from a team as a code owner November 17, 2025 17:06
joshdrake
joshdrake reviewed Nov 17, 2025
View reviewed changes
joshdrake
joshdrake reviewed Nov 17, 2025
View reviewed changes
joshdrake
joshdrake reviewed Nov 17, 2025
View reviewed changes
joshdrake
joshdrake reviewed Nov 17, 2025
View reviewed changes
joshdrake
joshdrake reviewed Nov 17, 2025
View reviewed changes
platform/smallstep-agent.mdx
Comment on lines +402 to +407
1. Stop and remove the launch agent:
```bash
launchctl stop com.smallstep.launchd.Agent
launchctl remove com.smallstep.launchd.Agent
```
Copy link
Contributor

@joshdrake joshdrake Nov 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I believe svc uninstall should handle this, cc @darkfronza

joshdrake
joshdrake reviewed Nov 17, 2025
View reviewed changes
platform/smallstep-agent.mdx Outdated
Comment on lines 457 to 467
3. Configure the agent using PowerShell (run as Administrator):
```powershell
New-Item -Path "HKLM:\Software\Policies\Smallstep"
Set-ItemProperty -Path "HKLM:\Software\Policies\Smallstep" -Name "TeamSlug" -Value "<team-id>"
Set-ItemProperty -Path "HKLM:\Software\Policies\Smallstep" -Name "Certificate" -Value "capi:store-location=machine;store=My;issuer=Smallstep (<team-id>) Agents Intermediate CA;cn=step-agent-bootstrap"
```
Replace `<team-id>` with your Team ID from the Smallstep UI (found in [Settings → Team](https://smallstep.com/app/?next=/settings/team)).
If your team was created before October 2024, your issuer CA may have a common name without the team slug ("Smallstep Agents Intermediate CA"). Check your [Authority list](https://smallstep.com/app/?next=/cm/authorities) to confirm.
Copy link
Contributor

@joshdrake joshdrake Nov 17, 2025

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This isn't going to be applicable for cases where an MDM is not being used to issue a provisional enrollment certificate. Instead, this should likely focus on self-enrollment and API-based enrollment. See: https://www.notion.so/smallstep/API-based-Enrollment-Windows-and-Linux-25cd17a9124980bfa220eeec08ebb80b

joshdrake
joshdrake requested changes Nov 17, 2025
View reviewed changes
Copy link
Contributor

@joshdrake joshdrake left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Left several comments for material changes.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@joshdrake joshdrake joshdrake requested changes

Requested changes must be addressed to merge this pull request.

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

3 participants

@tashian @joshdrake