{"id":57600,"date":"2021-12-15T10:09:17","date_gmt":"2021-12-15T15:09:17","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=57600"},"modified":"2022-05-11T10:43:51","modified_gmt":"2022-05-11T14:43:51","slug":"installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell","title":{"rendered":"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell"},"content":{"rendered":"\n<p><em>Editor&#8217;s note: This tutorial was originally posted by Juergen Klaassen on his <\/em><a href=\"https:\/\/www.linkedin.com\/pulse\/how-securely-acquire-secret-key-from-within-required-agent-klaassen?trk=public_profile_article_view\"><em>LinkedIn page<\/em><\/a><em>.<\/em><\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Challenge:<\/h2>\n\n\n\n<p>I was looking for a secure option to acquire the connect key for the <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/how-the-jumpcloud-agent-works1\">JumpCloud agent<\/a> during a Task Sequence with <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/deployment\/deploy-windows-mdt\/get-started-with-the-microsoft-deployment-toolkit#about-mdt\">MDT<\/a> while imaging a Windows 10\/11 with a custom ISO.<\/p>\n\n\n\n<p>During the <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/deployment\/deploy-windows-mdt\/deploy-a-windows-10-image-using-mdt\">Task Sequence<\/a>, the JumpCloud agent installer requires a connect key which needs to be passed as a parameter. As I don&#8217;t want to hardcode or store the connect key anywhere on the image within scripts or by using half-baked obfuscation techniques, I needed an approach which allows me to authenticate as an authorized administrator (or user).<\/p>\n\n\n\n<p>There were of course several approaches to it. A simple one could have been to halt the Task Sequence, login to the JumpCloud Console, copy the key, and then paste it over to the installer and proceed &#8211; too many clicks and a little cumbersome as well because the Task Sequence is usually running in a low resolution. I considered options like password-protecting the installer including the connect key, but these methods are rather antiquated and do seldom cater for similar scenarios on deployed and provisioned systems as they often trigger false positives with EDR-solutions in place. I had to do some more research and start exploring vaulting solutions such as <a href=\"https:\/\/www.vaultproject.io\/\">Vault by Hashicorp<\/a>, <a href=\"https:\/\/aws.amazon.com\/secrets-manager\/\">AWS Secrets Manager<\/a> or <a href=\"https:\/\/azure.microsoft.com\/en-us\/services\/key-vault\/\">Azure Key Vault<\/a>. All were considered here as they do have Powershell-modules <a href=\"https:\/\/www.powershellgallery.com\/packages\/Az.KeyVault\/3.6.1\">available<\/a>. I did choose Azure Key Vault as I didn&#8217;t have to sign-up for anything new and I&#8217;m using Azure for other purposes as well.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">Requirements:<\/h2>\n\n\n\n<ul><li><a href=\"https:\/\/azure.microsoft.com\/en-us\/pricing\/details\/key-vault\/\">Little<\/a>-to-zero cost: Storing and acquiring secrets from a vault shall be extremely cheap and ideally it has no fees when idling around.<\/li><li>Must be fully scriptable except the authentication sequence itself where the administrator is asked for credentials, ideally <strong>with MFA enabled<\/strong>.<\/li><li>Deployable without any third-party software installations, i.e. tool to wrap the installer into a new binary or so<\/li><\/ul>\n\n\n\n<h2 class=\"wp-block-heading\">Solution:<\/h2>\n\n\n\n<p><strong>Note<\/strong>: This is rather a quick solution right now and not perfect, but it&#8217;s confirmed working<\/p>\n\n\n\n<p>Once you&#8217;ve setup your Key Vault on Azure, you&#8217;re ready to consume the secret within scripts:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"97\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-1.png\" alt=\"\" class=\"wp-image-57603\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-1.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-1-300x57.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>This script which will be used within the Task Sequence (more about that later) doesn&#8217;t require a change of the Execution-Policy (this is by default elevated in a TS):<\/p>\n\n\n\n<ul><li>&nbsp;<em>Install-Module -Name Az.KeyVault -Force<\/em> to install the respective <a href=\"https:\/\/www.powershellgallery.com\/packages\/Az.KeyVault\/3.6.1\">module<\/a><\/li><li>&nbsp;<em>Import-Module Az.KeyVault<\/em> to load the module<\/li><li>&nbsp;<em>Connect-AzAccount<\/em> to auth against AAD and being able to retrieve the secret within this session (-<em>Tenant<\/em> and &#8211;<em>Subscription<\/em> are optional)<\/li><\/ul>\n\n\n\n<p><code>Connect-AzAccount -Tenant &#8216;xxxx-xxxx-xxxx-xxxx&#8217; -SubscriptionId &#8216;yyyy-yyyy-yyyy-yyyy<br>Account&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; SubscriptionName    TenantId&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; Environment<br>&#8212;&#8212;-&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &#8212;&#8212;&#8212;&#8212;&#8212;-    &#8212;&#8212;&#8211;&nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &nbsp; &#8212;&#8212;&#8212;&#8211;<br>azureuser@contoso.com&nbsp; Subscription1&nbsp; &nbsp;    xxxx-xxxx-xxxx-xxxx &nbsp; &nbsp; AzureCloud&#8217;<\/code><\/p>\n\n\n\n<ul><li><code>$key = Get-AzKeyVaultSecret -VaultName &#8216;MDT-creds&#8217; -Name &#8216;JumpCloud-Connect-Key&#8217; -AsPlainText<\/code>\u00a0 to acquire the connect key and make it usable as a variable ($key)<\/li><li><code>cd $env:temp | Invoke-Expression; Invoke-RestMethod -Method Get -URI https:\/\/raw.githubusercontent.com\/TheJumpCloud\/support\/master\/scripts\/windows\/InstallWindowsAgent.ps1 -OutFile InstallWindowsAgent.ps1 | Invoke-Expression; .\/InstallWindowsAgent.ps1 -JumpCloudConnectKey $key<\/code> to download the latest JumpCloud Agent for Windows to the temp environment and run it with the just acquired connect key as a parameter (-JumpCloudConnectKey)<\/li><\/ul>\n\n\n\n<p><code>Install-Module -Name Az.KeyVault -Force<br>Import-Module Az.KeyVault<br>Connect-AzAccount<br><br>$key = Get-AzKeyVaultSecret -VaultName &#8216;MDT-creds&#8217; -Name &#8216;JumpCloud-Connect-Key&#8217; -AsPlainText<br><br>cd $env:temp | Invoke-Expression; Invoke-RestMethod -Method Get -URI https:\/\/raw.githubusercontent.com\/TheJumpCloud\/support\/master\/scripts\/windows\/InstallWindowsAgent.ps1 -OutFile InstallWindowsAgent.ps1 | Invoke-Expression; .\/InstallWindowsAgent.ps1 -JumpCloudConnectKey $key&nbsp;<\/code><\/p>\n\n\n\n<p>To run this script successfully within a Task Sequence you will need to make sure that the newly imaged installation has internet access. In some cases you need to <a href=\"https:\/\/docs.microsoft.com\/en-us\/windows\/deployment\/deploy-windows-mdt\/deploy-a-windows-10-image-using-mdt#step-5-prepare-the-drivers-repository\">ingest drivers<\/a> before or give windows some time to detect the hardware and get the connection up.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"147\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-2.png\" alt=\"\" class=\"wp-image-57606\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-2.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-2-300x86.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>There are multiple ways to ensure a connection before running the script, a simple one is to wait for a connection by using<\/p>\n\n\n\n<p><code>do&nbsp;<br><br>&nbsp;$ping = test-connection -comp 8.8.8.8 -count 1 -Quiet<br><br>} until ($ping){<\/code><\/p>\n\n\n\n<p>&#8230;as this will halt the execution until 8.8.8.8 was pinged successfully.<\/p>\n\n\n\n<p>Usually you will run this script as one of the last steps within a Task Sequence under the section &#8216;State Restore&#8217;:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"461\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-3.png\" alt=\"\" class=\"wp-image-57607\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-3.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-3-300x270.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>Once the script was successfully executed, the agent will register the newly imaged machine as a new device on the JumpCloud Administrator Console:<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"512\" height=\"333\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-4.png\" alt=\"\" class=\"wp-image-57608\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-4.png 512w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-4-300x195.png 300w\" sizes=\"(max-width: 512px) 100vw, 512px\" \/><\/figure>\n\n\n\n<p>Notes:<\/p>\n\n\n\n<ul><li>The image for Windows 10\/11 mentioned here is highly customisable. In this case I used a pre-patched and leaner WIM-file (some pre-installed Windows-Apps were removed).<\/li><li>A forced clean-up of any installers is recommended once everything is done.<\/li><li>Once the imaged device is registered to JumpCloud, you can proceed with various administrative tasks such as <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/getting-started-policies-2019-08-21-10-36-47\">enforcing policies<\/a> including <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/bitlocker-policy\">BitLocker encryption<\/a>, <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/getting-started-commands-2019-08-21-10-36-47\">executing remote commands<\/a>, <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/Binding-Users-to-Devices\">assigning users<\/a> etc.<\/li><li>The script to acquire a secret from a vault can be used for various other purposes of course, i.e. if you have keys\/identifiers to be used with installers\/applications.<\/li><li>During the prompt to authenticate while the script is running, you will be using your AAD-credentials. Ideally you can also use <a href=\"https:\/\/support.jumpcloud.com\/support\/s\/article\/single-sign-on-sso-with-office-3651\">JumpCloud as an IdP for AAD<\/a>. This can be particularly helpful if users (not admins) might re-image a laptop on behalf of an admin. Just make sure that the user has the respective rights on the Key Vault then.<\/li><li>If required, you can further lockdown the KeyVault to selected networks or private endpoints:<\/li><\/ul>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" width=\"1024\" height=\"436\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-5-1024x436.png\" alt=\"\" class=\"wp-image-57609\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-5-1024x436.png 1024w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-5-300x128.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-5-768x327.png 768w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/12\/secret-key-powershell-jumpcloud-agent-5.png 1460w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Thanks for reading!<\/p>\n","protected":false},"excerpt":{"rendered":"<p>This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.<\/p>\n","protected":false},"author":161,"featured_media":48623,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[23],"tags":[2609,2320,2610,2388],"collection":[2778],"platform":[],"funnel_stage":[3014],"coauthors":[2611],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Installing JumpCloud Agent: Acquire A Secret Key Within Powershell<\/title>\n<meta name=\"description\" content=\"This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell\" \/>\n<meta property=\"og:description\" content=\"This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2021-12-15T15:09:17+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2022-05-11T14:43:51+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"780\" \/>\n\t<meta property=\"og:image:height\" content=\"492\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Juergen Klaassen\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Juergen Klaassen\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"5 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\"},\"author\":{\"name\":\"Juergen Klaassen\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/bfa9c7d273d065eee1fd418feca4b020\"},\"headline\":\"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell\",\"datePublished\":\"2021-12-15T15:09:17+00:00\",\"dateModified\":\"2022-05-11T14:43:51+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\"},\"wordCount\":775,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg\",\"keywords\":[\"JumpCloud agent\",\"PowerShell\",\"secret key\",\"tutorial\"],\"articleSection\":[\"Best Practices\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\",\"url\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\",\"name\":\"Installing JumpCloud Agent: Acquire A Secret Key Within Powershell\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg\",\"datePublished\":\"2021-12-15T15:09:17+00:00\",\"dateModified\":\"2022-05-11T14:43:51+00:00\",\"description\":\"This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg\",\"width\":780,\"height\":492},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/bfa9c7d273d065eee1fd418feca4b020\",\"name\":\"Juergen Klaassen\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/b0bdf4ed3fdb5b6972eca1834305841f\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/11b6dd54cf94d34fd85227bab2078e87?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/11b6dd54cf94d34fd85227bab2078e87?s=96&d=mm&r=g\",\"caption\":\"Juergen Klaassen\"},\"description\":\"Experienced (20y+) in planning, architecting, purchasing, deploying, operating, and maintaining IT-Infrastructures- and systems in mixed environments. Focussed on cloud-only solutions with a strong awareness of security, innovation and user-oriented solutions. Demystify by doing.\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Installing JumpCloud Agent: Acquire A Secret Key Within Powershell","description":"This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell","og_locale":"en_US","og_type":"article","og_title":"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell","og_description":"This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.","og_url":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell","og_site_name":"JumpCloud","article_published_time":"2021-12-15T15:09:17+00:00","article_modified_time":"2022-05-11T14:43:51+00:00","og_image":[{"width":780,"height":492,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg","type":"image\/jpeg"}],"author":"Juergen Klaassen","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Juergen Klaassen","Est. reading time":"5 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell"},"author":{"name":"Juergen Klaassen","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/bfa9c7d273d065eee1fd418feca4b020"},"headline":"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell","datePublished":"2021-12-15T15:09:17+00:00","dateModified":"2022-05-11T14:43:51+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell"},"wordCount":775,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg","keywords":["JumpCloud agent","PowerShell","secret key","tutorial"],"articleSection":["Best Practices"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell","url":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell","name":"Installing JumpCloud Agent: Acquire A Secret Key Within Powershell","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg","datePublished":"2021-12-15T15:09:17+00:00","dateModified":"2022-05-11T14:43:51+00:00","description":"This tutorial shows how to acquire the connect key for the JumpCloud agent during a Task Sequence with MDT while imaging Windows 10\/11 with a custom ISO.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2020\/11\/understanding-powershell-jumpcloud.jpg","width":780,"height":492},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/installing-jumpcloud-agent-how-to-acquire-a-secret-key-within-powershell#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"Installing JumpCloud Agent: How to Acquire A Secret Key Within Powershell"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/bfa9c7d273d065eee1fd418feca4b020","name":"Juergen Klaassen","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/b0bdf4ed3fdb5b6972eca1834305841f","url":"https:\/\/secure.gravatar.com\/avatar\/11b6dd54cf94d34fd85227bab2078e87?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/11b6dd54cf94d34fd85227bab2078e87?s=96&d=mm&r=g","caption":"Juergen Klaassen"},"description":"Experienced (20y+) in planning, architecting, purchasing, deploying, operating, and maintaining IT-Infrastructures- and systems in mixed environments. Focussed on cloud-only solutions with a strong awareness of security, innovation and user-oriented solutions. Demystify by doing."}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/57600"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/161"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=57600"}],"version-history":[{"count":2,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/57600\/revisions"}],"predecessor-version":[{"id":62884,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/57600\/revisions\/62884"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/48623"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=57600"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=57600"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=57600"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=57600"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=57600"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=57600"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=57600"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}