MSI arguments

When using the .msi installer either as a Logon script or Installation task, several arguments can be used.

To specify components to be installed, the ADDLOCAL argument is used. Possible values include the following:
Credential_Provider = Remote Desktop protection component
Win_Credential_Provider = Windows Login protection component
Radius_Server
Web_Exchange, Web_SharePoint, Web_RemoteDesktop, Web_Dynamics, Web_RemoteAccess
Management_Tools = Management console
ADFS3
Core_Service = Authentication server
Reports_Elasticsearch = Reporting engine (Elasticsearch)

To set initial username and password for ESA Web Console:
ESA_CONFIG_WEB_CONSOLE_USER, ESA_CONFIG_WEB_CONSOLE_PASSWORD

To set a custom RADIUS port or set the details of proxy server to be used, the following arguments are available. Set the corresponding values.
ESA_CONFIG_RADIUS_PORT
ESA_CONFIG_PROXY_SERVER, ESA_CONFIG_PROXY_PORT, ESA_CONFIG_PROXY_USER, ESA_CONFIG_PROXY_PASSWORD

To set a custom domain port (Active Directory Integration deployment type only) or a custom API port, the following arguments are available. Set the corresponding values:
ESA_CONFIG_CORE_PORT_DOMAIN
ESA_CONFIG_CORE_PORT_API

To specify deployment type, the ESA_COMPUTER_CONFIG_INTEGRATION_MODE argument is used. Possible values include the following:
1 = Active Directory Integration (default value)
2 = Standalone
 
If value number 2 is used, the following arguments must be configured also, unless installing ESA components on the same machine where the Authentication Server is installed:
       ESA_COMPUTER_CONFIG_AUTHENTICATION_SERVER_ADDRESS - IP address of Authentication Server to be used in invitations.
       ESA_COMPUTER_CONFIG_AUTHENTICATION_SERVER_ACCESS - invitation code.
       TRUSTED_CERT_HASH - hash of trusted Certificate to be added to certificate store.

Useful MSIEXEC arguments:
/L*v "c:\esa_install_log.txt" - to create an installation log file named esa_install_log.txt in the C directory
/qn - silent installation mode, meaning, the installation is accomplished in the background without the interaction of being logged in user.

To install or remove ESA components without a Domain Admin user, use NO_DOMAIN_ADMIN_MODE=1.

For complete removal of ESA Authentication Server, including configuration data stored in Active Directory, use AUTHENTICATION_SERVER_CLEAN_DATA=1.