We are trying to install the netskope clinet via IDP using the below command. But somehow it is not successful.
msiexec /I NSClient.msi tenant=XXX domain=goskope.com installmode=IDP mode=peruserconfig enrollauthtoken=XXX enrollencryptiontoken=XXX (/qn - we removed the qn just ot see the live progress what is happening).
With Email-Invite it is working on the same PC, but we are trying to install via IDP for bulk installation without users intervention to enter the credentials.
We have configred the token at MDM distribution and also created the SAML authentication under Forward Proxy.
When we see the logs and didn’t found anything resolvable.
"event_details": "Installed client version 132.0.7.2513", "actor": "System" }}
2025/11/26 11:13:04.911 stAgentSvc p155c tc24 info addonmanapi.cpp:756 addonmanapi posting client status
2025/11/26 11:13:04.911 stAgentSvc p155c tc24 error addonmanapi.cpp:759 addonmanapi Post Client Status addon userkey is empty
2025/11/26 11:13:04.911 stAgentSvc p155c tc24 error clientStatusHandler.cpp:452 clientStatusHandler [sessId 1] Failed to post Client status
2025/11/26 11:13:04.911 stAgentSvc p155c tc24 error clientStatusHandler.cpp:949 clientStatusHandler [sessId 1] Failed to post client status from cache
2025/11/26 11:13:04.911 stAgentSvc p155c tc24 info clientStatusHandler.cpp:988 clientStatusHandler [sessId 1] Posted 0 events from cache out of 1
2025/11/26 11:13:04.911 stAgentSvc p155c tc24 info clientStatusHandler.cpp:994 clientStatusHandler [sessId 1] Failed to post any event from cache
2025/11/26 11:13:04.916 stAgentSvc p155c tc24 info config.cpp:7288 Config OTP request succedded m_otpTime set to 1764141244
2025/11/26 11:13:04.917 stAgentSvc p155c tc24 info epdlpSvcStub.cpp:472 EpdlpSvc service epdlp does not exist
2025/11/26 11:13:04.917 stAgentSvc p155c tc24 info epdlpSvcStub.cpp:472 EpdlpSvc service epdlp does not exist
2025/11/26 11:13:06.517 stAgentSvc p155c t3dac warn npaConfig.cpp:1506 CNpaConfig Can not find session -1 from npa sessions
At the client we see below error
“Configuration Download Failed
Please authenticate again”
So we able to successfully authenticate when prompt along with OTP.
Also we were able to successfully test authenticate from SAML page in Netskope when we click test
Forward Proxy-->SAML-->entry-->three dot→ test.
But when we do the same operation from Entra ID → netskope user authentication app→ Test, it is not successful. It says ERR_PARAM_Failed..
We are using the below attributes
user.userprinciplename
user.mail
Kindly correct me is the configuraitons are good?
