Deployment Management

To edit a deployment:

1. Click the (Ellipsis) icon to open the Options menu, then choose Edit.

2. Modify the deployment settings. For more information, see the Create Deployment help topic.

3. Click Save.
   A success message is displayed in the top right corner of the screen, and the Deployment Management page opens with the updated settings.

To copy a deployment:

1. Click the (Ellipsis) icon to open the Options menu, then choose Make A Copy.

2. The Deployment Management page opens for the copied deployment. Modify the deployment settings, if needed. For more information, see the Create Deployment help topic.

Note: Deleting deployments is permanent and cannot be undone.

To delete a deployment:

1. Click the (Ellipsis) icon to open the Options menu, then choose Delete.

2. Click Delete to confirm.
   A success message is displayed in the top right corner of the screen, and the Deployments page refreshes with the deployment removed.

Note: Cisco Secure Client pre-deploy installations are compatible with Cisco XDR Cloud Management deployments. However, Cloud Management and Network Visibility Module - XDR modules must be installed using the Cisco XDR installer.

Click Full Installer or Network Installer at the top of the Deployment Management page to download the installer executable. The installer can be run individually on each endpoint or pushed by using your software management tool.

• Network Installer - A lightweight installer that contains only the Cloud Management client. When deploying the network installer, it fetches the rest of the installers configured on the deployment in the background.

• Full installer - A bundle of all the installers and profiles that have been configured for a deployment, larger in size than the network installer. When the user installs a full installer, the Cloud Management client and all the packages from the deployment are installed.

Running a full or network installer on a device associates it with the deployment from which the installer was generated. Any time the device checks in to the cloud, the list of installed packages is compared with the deployment requirements, and the packages and profiles will be updated to bring them in line with the deployment. However, installed packages that have a higher version than what is in the deployment will not be downgraded.

• AnyConnect VPN profiles that are not in a deployment, but are discovered on an endpoint, will not be deleted. If a profile in a deployment has the same name as a profile on the endpoint, the profile on the endpoint will be replaced.
• Network Access Manager profiles on the endpoint will never be deleted, but they will be replaced if updated in a deployment.
• Network Visibility Module, ISE Posture, Umbrella, and Cloud Management profiles - Any profile that’s not in a deployment will be deleted on the endpoint.

To change the deployment for a device, see Clients help topic.

Note: Any changes made to devices will require some time to update on the Clients page.