CommandIT Agent Suite

1\ introduction the commandit agent suite is the collection of software components installed on managed endpoints and designated network probe devices it serves as the essential link between the client's it environment and the central commandit platform the agent suite enables device registration, secure communication, detailed inventory/configuration data collection using efficient delta synchronization , user presence tracking, real time communication via websockets , retrieval of effective policies , basic task execution, and status reporting it forms the foundation for commandit's rmm, security, itsm, and future automation/security capabilities this document provides a high level overview of the agent components and outlines the primary objectives and scope for the v1 release , which prioritizes deploying a stable agent infrastructure, establishing reliable synchronous and real time communication, tracking presence, enabling basic script execution, and implementing comprehensive endpoint data collection via agent side delta processing based on effective policies retrieved from the backend 2\ target platforms & prerequisites (v1) the v1 agent suite targets the following operating systems and architectures windows windows 7 sp1+ (x64) windows 8 / 8 1 (x64) windows 10+ (x64) windows server 2008 r2 sp1+ (x64) windows server 2012 / 2012 r2 (x64) windows server 2016+ (x64) note requires tls 1 2 (os updates may be needed on win7/2008r2) agent verifies support note agent/ui requires webview2 runtime v1 installer must check and install if missing macos macos 12 monterey+ architecture intel (x86 64) and apple silicon (arm64) supported via universal binaries 3\ core architecture principles the agent suite is built upon these key principles modularity functionality divided into distinct components (service, agent ui, probe, updater) security secure communication (https/tls 1 2+, secure websockets), device authentication, signed updates efficiency minimal endpoint resource impact, agent side delta comparison/upload for bandwidth optimization resilience handles intermittent connectivity, utilizes local data cache (sqlite implied) self updating dedicated updater component manages secure updates for the agent suite itself outbound communication all connections initiated outbound from agent components centralized policy resolution the commandit backend calculates the final effective policy for a device based on hierarchy and tags; the agent requests and applies this resolved policy 4\ agent suite components (overview) 4 1 the commandit service (core background process) primary engine running silently as system/root (universal binary on macos) v1 focus handles registration, authentication, heartbeats requests its effective policy set (resolved by the backend based on hierarchy/tags) and caches it locally performs v1 data collection tasks based on the effective policy executes basic script commands received via agentcommandqueue reports data deltas and results via api manages communication and coordinates local components 4 2 the commandit agent ui (user interface) desktop application running as logged in user (tauri/webview2) (universal binary on macos) v1 focus provides status visibility, relays notifications, reports user activity/presence to service, provides primary chat interface (initiates websocket) 4 3 the commandit probe (network services) background service for future network centric tasks (universal binary on macos) v1 scope selectively installed/enabled on designated devices but remains functionally dormant 4 4 the commandit updater (self update mechanism) dedicated background service (system/root) (universal binary on macos) v1 focus securely manages updates exclusively for the commandit agent suite components 5\ component interaction & information exchange the service is the central endpoint hub, managing backend api communication (requesting effective policies, fetching commands, uploading deltas/results) the agent ui interacts locally with the service and connects directly to backend websockets the updater coordinates with the service for agent suite updates data flow commands and resolved effective policies flow down via https api upon agent request collected data deltas flow up via https api from service real time data (chat, presence signals) flows via websockets 6\ v1 scope summary v1 establishes the agent infrastructure and focuses intensely on robust communication (api & websockets), reliable updates, presence tracking, and comprehensive endpoint data collection using agent side delta synchronization, driven by effective policies resolved by the backend key deliverables & functionality in scope for v1 component installation & core functionality reliable installation (including prerequisite checks like webview2), registration, secure communication, self update mechanism ( service , agent ui , updater ) probe optionally installed but dormant agent side local cache setup secure communication & policy acquisition https/tls 1 2+ api calls and secure websocket (wss) connections agent requests its final effective policies (for data collection, future monitoring/security) from a backend api endpoint; backend performs hierarchy/tag resolution agent caches received policy user presence/activity data collection agent ui reports user activity/screen lock status to service service updates relevant users fields usersessions table populated by backend based on agent events basic online/offline status signaled via websocket connection state comprehensive endpoint data collection (policy driven, agent side deltas) agent service periodically scans data points as directed by its effective policy compares results locally, calculates deltas, uploads only changes includes hardware inventory, os & configuration details, software inventory, patch status (os reported), network configuration, endpoint security state (basic os query), network share inventory (read only), specified registry keys/values conditional collection for sql/exchange if agent is on server & policy dictates warranty data points collected backend handles ingestion/conflict resolution basic script execution capability service executes scripts via agentcommandqueue , reports results websocket infrastructure backend and client side implementation for v1 chat and basic presence chat ui foundation agent ui includes the primary interface for chat explicitly deferred capabilities (post v1 scope) active monitoring & alerting engine agent side evaluation based on effective monitoringpolicies / compliancepolicies detailed security & event logging populating storageaccesslog , applicationexecutionlog , elevationrequestlog , securityeventslog based on effective eventlogmonitoringpolicies security policy enforcement agent actively enforcing executioncontrolpolicies , storagecontrolpolicies patch management actions agent orchestrating patching based on patchpolicies full automation workflow engine agent execution of complex automations remote control active probe functionality network discovery, agentless monitoring, ad/azure sync via probe vulnerability scanning data collection/analysis advanced ai features advanced agent ui functionality remote wipe & advanced security response actions remote tools suite 7\ script / automation execution approach (v1) v1 includes basic script execution handled by the agent service via the agentcommandqueue the service executes scripts using native os interpreters and reports results the full engine for complex workflows is deferred post v1 8\ links to detailed specifications (placeholders)