Skip to main content
McAfee Enterprise MVISION Cloud

Install a CWPP Agent Using AWS User Data

After the POP deployment is completed successfully and all the services are installed properly then agent deployment process can be done on an autoscaling instance or an EC2 instance created in the proper region. 

Before installation, verify the following:

  • Validate the options provided to the installation script 

  • Check permission for Installation, Space requirements, and Platform support 

  • DXL (Data eXchange Layer) Configuration files are downloaded from the CICD (Continuous Integration and Continuous Delivery) Service that the Installer Binary will use to communicate with the DXL Broker hosted in the POP. 

  • Installer binary is downloaded from the CICD Service and executed.

  • Logs are saved locally and showed on the console and sent to the CICD Service.

Once the agent deployment is successful, validate if the same is reported to the POP in MVISION Cloud in the Resources tab.

To install CWPP agents through user data:  

  1. In AWS, go to Create EC2 instance and initiate an instance creation.

  2. In the Configure Instance Details wizard, select an IAM Role that has EC2-ReadOnlyAccessToS3Buckets 

  3. Upload the custom user data script AgentInstall.shprovided in the previous section 

NOTE: Ensure that the AWS S3 location in the script contains the valid PoPCICDPackage.tar package  



  1. Ensure that the Agents have Outbound connection access to the internet. This is required to download the required packages.

  2. Create the instance. 

Once the instance creation is done, as part of the instance creation the script installs the CWPP agent. The installed agent will report to MVISION Cloud and will be flagged as a managed instance.  

  • Was this article helpful?