When are Secure Tokens generated within EPM?

Secure Tokens within the CyberArk Endpoint Privilege Manager (EPM) are generated during specific operational contexts, one of which is when endpoints are upgraded or agents are uninstalled. This process integrates a security mechanism where tokens are created to authenticate and authorize specific actions on endpoints, especially when there is a change in the agent's state or configuration.

During upgrades or uninstallation, Secure Tokens are crucial as they validate the integrity and authorize the activities being performed. This prevents unauthorized changes or actions from taking effect in a scenario where endpoint security is vital.

In contrast, generating Secure Tokens during user login, system setup, or on-demand by administrators does not align with the typical operational processes where Secure Tokens are utilized. The context of endpoint upgrades and uninstallation specifically points to the need for security tokens to ensure that any modifications are appropriately handled in a secure manner. This reinforces the integrity of the endpoint environment in line with CyberArk's security protocols.