Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 5 subscribers
  • Views 5606 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Laptop has no AD record, user locked out

Cerebus06

I've run into an interesting issue - I have a user that, apparently, doesn't use their laptop hardly at all.  As such, the last time the machine connected to the network and it's AD record was updated was so long ago that the laptop's AD record no longer exists.

The user tried to boot up and use the laptop last Friday, and of course Sophos SGE locked him out.  I found out that no AD record existed when I attempted to unlock his account.

My question is, essentially, how does one unlock a locked laptop without the laptop having a record in AD?We're in the middle of an upgrade push from SGE 5.40.0.130 to 5.60.0.192 - the client in question is 5.40.  I've attempted to find a WinPE SGE ISO for the 5.40 version we're using without any luck, thinking that might be a solution.

Thanks in advance...

:23797


This thread was automatically locked due to age.
  • 0

    Is your end goal to get the machine up and running again, or to extract some data that the user has saved on the machine?

    If it's the former, you might be out of luck.  In the past, we've had (workgroup) computer entries in the management center get deleted before the machine is decomissioned, but in those cases, we knew the username and password and were able to get past the POA.  With that, we just logged into windows, resynchronized SGN and a new entry for the machine popped up in the MC.  It doesn't sound like you'll be able to do that.

    If all you're looking to do is grab some information from the machine, the machine's key should still be stored in the SGN database, so you could do either the recoverykeys method with a WinPE disc, or try giving the key to another user/machine combination and slave the internal drive.

    Finally, you can get the v5.40 WinPE disc (or any other version) from here:

    http://www.sophos.com/support/knowledgebase/article/108805.html

    :23801
  • 0

    Yea, my initial end goal is to attempt to get the system back up and running again... but I pretty much assumed from the start that a solution for that was most likely nil.  I figured I'd ask anyway just to see if I might be in luck.

    Thanks for the link - I'll give that a try.

    :23807
Unfiltered HTML