Forcepoint Web Security Proxy Connect Endpoint or mixed packages made via the package builder

Windows packages created with the package builder contain a single executable file: FORCEPOINT-ONE-ENDPOINT-x32.exe or FORCEPOINT-ONE-ENDPOINTx64. exe.

If you are installing the Forcepoint Proxy Connect Endpoint only, or a mixed installation package containing Forcepoint Proxy Connect Endpoint and one or more other compatible Forcepoint F1E agents (Forcepoint DLP Endpoint or Forcepoint ECA):

  1. Copy the executable file to the endpoint machine.
  2. Open the command line and run the following command from the folder containing the installation package:

    FORCEPOINT-ONE-ENDPOINT-x64.exe /v"XPSWDPXY=<password> WSCONTEXT=<token>" where:

    • <password> is the anti-tampering password used by the Forcepoint Endpoint software already installed on the endpoint machine (if upgrading) or to be used by the new Forcepoint F1E software.If the password contains a special character, you must type a ^ character before the special character. For more information, see Guidelines for creating an anti-tampering password.

    • <token> is the WSCONTEXT string shown in the GPO code string on the Settings > Hybrid Configuration > Hybrid User Identification page in the Web Security module of the Forcepoint Security Manager or the Web > Endpoint page in the Forcepoint Cloud Security Gateway Portal.

      The WSCONTEXT string used to identify your organization to the hybrid or cloud service must be included in the command string. Each account has its own WSCONTEXT string. Roaming and remote users use this string to connect to your specific account.

      All arguments passed via the /v parameter must be enclosed in straight quotes, as shown in the example.

      You must provide both the XPSWDPXY and WSCONTEXT arguments.

      To perform a silent install, add the /qn parameter as follows:

      FORCEPOINT-ONE-ENDPOINT-x64.exe /v"/qn XPSWDPXY=<password> WSCONTEXT=<token>"

      To perform a silent install that does not prompt the end user to restart the endpoint machine, add the /norestart parameter as follows:

      FORCEPOINT-ONE-ENDPOINT-x64.exe /v"/qn /norestart XPSWDPXY=<password> WSCONTEXT=<token>"

      Note: You must restart the endpoint machine to finish a Forcepoint DLP Endpoint installation. If you perform a silent install without a restart (using the /norestart parameter), Forcepoint DLP Endpoint may not function as needed until after the endpoint machine is restarted.
      The command switches are summarized below:
      Function Switch
      Silent install FORCEPOINT-ONE-ENDPOINT-x64.exe /v"/qn"
      Silent install without restart FORCEPOINT-ONE-ENDPOINT-x64.exe /v"/qn / norestart"
      Set WSCONTEXT FORCEPOINT-ONE-ENDPOINT-x64.exe / v"WSCONTEXT=xxxx"
      Set uninstall password FORCEPOINT-ONE-ENDPOINT-x64.exe /v"XPSWDPXY=xxxx"
      Set WSCONTEXT and silent install FORCEPOINT-ONE-ENDPOINT-x64.exe /v"/qn WSCONTEXT=xxxx"