Guest User!

You are not Sophos Staff.

Thread Info
  • Locked Locked
  • Replies 296 replies
  • Subscribers 48 subscribers
  • Views 727778 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Issue: Sophos Central Admin – US-West region - Delays with the enforcement of Central policies on managed endpoints.

Bianson

**Update 9** Root cause analysis KBA has been published: see knowledge base article for the latest.

**Update 8** As part of a routine database maintenance task customers may notice a few intermittent install and policy rendering failures. Please retry before contacting support. 7/17/2017 8:00 AM PST

**UPDATE 7** Some customers may notice a few intermittent install failures, please retry before contacting Sophos Support. 7/14/2017 2:00 PM PST

**UPDATE 6** Installations are being processed normally, service is restored. Please re-download installer from Central. 7/14/2017 9:00 AM PST

**UPDATE 5** Installations are now working as of July 13, 2017 19:00 UTC-5. See knowledge base article for the latest.

**UPDATE 4** New installs likely to still fail. http://centralstatus.sophos.com/#!/ has latest update. 

**UPDATE 3** System is now processing backlogs. Please see last updates here.

**UPDATE 2** Issue is ongoing, apologies. Impacts all areas within Central that rely on MCS communication between client and Central. 7/13/2017 8:00 AM PST

**UPDATE** Development has identified root cause and is working on a fix. 

Hello,

We are seeing delays with policy changes and enforcement in Sophos Central (US-West region) as well as installation failures due to inability of new endpoint installations to initially register. Our engineers are working to restore latency. Please note your endpoints remain protected. Updates will be provided on this thread.

KBA: https://community.sophos.com/kb/en-us/126477

Thank you,

Bob



This thread was automatically locked due to age.
  • in reply to Christopher Curwood

    I am ready for these to stop.  

     

  • Still getting update failures on various machines.  46 update failures in the last 9.5 hours.

  • in reply to B_B

    Scratch that.  50 update failures in the last 4 hours.  I had 46 successful updates in the last 9.5 hours.

  • in reply to B_B

    I am ready for these to stop.  

     

     

     

    Me too -- we manage a number of customers and the random emails saying the services have stopped, etc. are seriously annoying.  It's dangerous because we've gotten to the point where we ignore the alert (for the most part -- if it repeats on a single client we check it out) -- the boy has cried wolf one too many times.

  • in reply to BrucekConvergent

    I checked on a few machines with the alarm and the Sophos System Protection Service was not started. I opened a ticket and their response was to send me a KB on how to start a service.  The machines in your list either need rebooted or manually start the service which is what I did.  I created the ticket because we should not have to manually start a service.

  • in reply to BrucekConvergent

    You can be on the other end like I just realized we are.  I got one email this morning about a service not running on a machine and when I logged into the cloud I see there are 4 machines with that alert.  

  • in reply to B_B

    What really bothers me is that this is a email-worthy alert (we get hundreds of these - the boy who cried wolf):

    (False Alarm) Policy Violation

     

     

    But these are not email-worthy and have to be searched to see them:

    Malware Detection

     

    Controlled Application Violation

     

     

     

    I guess Sophos wants us to see how broken their product is more than the security issues on our PCs that might need to be looked into or logged.

  • in reply to K_M

    We are getting installation failures (again!).  Is there another outage?  Sophos is reporting everything is fine, but that seems to be their M.O.

  • in reply to K_M

    I'm having the same issue. Installed on 8 Domain Controllers last night, all failing to download and finalise the install, although they register with the Central Console.

     

  • in reply to K_M

    I would have to agree. Sopho's indeed seems to be the Solution were the end users are the Beta tester for their products. I rolled this out early Aug.

    I cannot tell you how many times I have to babysit this product. Revisit PC previous rolled out with Sophos because they refuse to Update. Is this a joke??

    Emails come it, some services not running WTF, they were running fine yesterday and the day before that, now what??

    Exclamation marks that NEVER go away.

    Agent on Windows is all but useless. Nothing about whats in Quarantine and how to get to it and clean it, I guess it remains in there forever??

    Agent on MAC has some items I can actually use. The MAC agent can: Scan this Mac, Update Now, Open Scans, Open Preferences, Open Quarantine Manager.

    Not to mention, a full 60 seconds before the login opens the dashboard. A couple of times I closed the browser thinking it wasn't going to connect.

    And one other thing. I had a user who needed Sophos turned off "RIGHT NOW" as it seemed to be blocking her from getting a very large report finished. Try as I might, enter Admin Code, turn off, nothing. try and unistall, failed.....tamper needs to be off. Turn of Tamper protect for PC. NOPE. Still fails to uninstall (please turn tamper protect off...it is OFF for damn sake)

    Turn off Tamper Protect for Domain...NOPE. She is still blocked by Sophos. Missed her deadline. I am the idiot because I cannot stop Sophos actions. 

    I hate the way this product does not let you administer it.

     

     

    Frustration level is setting in. Arrrrg

Unfiltered HTML
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?