There are various actions you can take on the remote agents to ensure they work as required.
The agent information presented in the remote agent page includes:
More detailed information is provided in the side drawer.
You can perform the following actions from the
more_vert
More menu inside the side drawer
Send installer/docker command: A unique, download link is generated for
each customer to install the agent on the remote site. . You can forward it to them.
Edit: You can edit the following:
Agent name
Log level
Download logs
Disable agent: A disabled agent cannot run actions or connectors or communicate with
Google Security Operations.
Delete agent: You can delete any agent from the platform.
[[["Easy to understand","easyToUnderstand","thumb-up"],["Solved my problem","solvedMyProblem","thumb-up"],["Other","otherUp","thumb-up"]],[["Hard to understand","hardToUnderstand","thumb-down"],["Incorrect information or sample code","incorrectInformationOrSampleCode","thumb-down"],["Missing the information/samples I need","missingTheInformationSamplesINeed","thumb-down"],["Other","otherDown","thumb-down"]],["Last updated 2025-08-29 UTC."],[[["\u003cp\u003eAgents in Google SecOps SOAR can be managed to ensure they function correctly, with key information provided, such as name, status, version, and last communication.\u003c/p\u003e\n"],["\u003cp\u003eA unique installer link can be generated and sent to install the agent on a remote site.\u003c/p\u003e\n"],["\u003cp\u003eAgents can be edited to change their name and log level.\u003c/p\u003e\n"],["\u003cp\u003eAgents can be disabled or deleted, which will stop communication with Google Security Operations.\u003c/p\u003e\n"],["\u003cp\u003eAgent logs can be downloaded.\u003c/p\u003e\n"]]],[],null,["# Manage agents\n=============\n\nSupported in: \nGoogle secops [SOAR](/chronicle/docs/secops/google-secops-soar-toc) \nThere are various actions you can take on the remote agents to ensure they work as required. The agent information presented in the remote agent page includes:\n\n- Name\n- Agent Status: Live, Failed, Pending, Disabled\n- Environment\n- Agent Version\n- Last Communication\n- High availability (HA) For more information on HA, see [Deploy high availability for remote agents.](/chronicle/docs/soar/working-with-remote-agents/deploy-high-availability-for-remote-agents)\n- Available update\nMore detailed information is provided in the side drawer. You can perform the following actions from the more_vert **More** menu inside the side drawer\n - **Send installer/docker command**: A unique, download link is generated for each customer to install the agent on the remote site. . You can forward it to them.\n - **Edit** : You can edit the following:\n - Agent name\n - Log level\n - **Download logs**\n - **Disable agent**: A disabled agent cannot run actions or connectors or communicate with Google Security Operations.\n - **Delete agent**: You can delete any agent from the platform.\n\n**Need more help?** [Get answers from Community members and Google SecOps professionals.](https://security.googlecloudcommunity.com/google-security-operations-2)"]]
