Skip to main content
This document is for:
Invicti Enterprise on-demand, Invicti Enterprise on-premises

Encrypt the agent token on Windows

Encrypting the Agent Token is a fundamental security measure you can take to safeguard sensitive information and enhance the integrity of your system. By encrypting the Agent Token, you can mitigate the risk of unauthorized access or tampering with critical data transmitted between the Invicti Agent and its corresponding components.

This document provides step-by-step instructions for manually encrypting your agent token and securely storing it in the appsettings.json file.

Steps to encrypt the agent token

  1. Select Agents  > Manage Agents from the left-side menu.
  2. Click + Configure New Agent.
  3. Locate the Agent Token and click the Copy to clipboard icon.
  4. Open Terminal and execute the following command, replacing <Agent Token> with the genuine Agent Token you copied from the Invicti Enterprise user interface in the previous step. 
    Netsparker.Cloud.Agent.exe -e <Agent Token>
  5. Terminal is going to return the encrypted token. Copy this token.
  6. Locate the appsettings.json file for the Invicti Agent (usually under Program Files) and input the encrypted token value into the ApiToken parameter.
Locate the appsettings file and input the token value in the Api token parameter.
  1. Save the file.

Your agent token is now encrypted.

Need help?

Invicti Support team is ready to provide you with technical help. Go to Help Center

Was this page useful?