Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 1749 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How To Clean Database / Resolve Numerous Issues (Last Question of 3)

BenK

Good Afternoon -

This is my last question/post of 3.  I've been put in charge of cleaning up the Sophos AV system at my company and am just learning about how it all works.  I have MUCH experience with other similar products, though.

As you can see by the attached image, We have many hosts that are "Out Of Date" or that "Differ From Policy."  

When I view the "Out Of Date" ones, about 50% of them were last updated within the past 24 hours.  I tried to change alert settings for the dashboard, but nothing changed.  I'm willing to bet that many of the other half are decommisioned too.  

1.  To ensure that all workstations are where they should be, what is the best method to clean this stuff up?

2. As far as the "Differ From Policy" hosts, I can't figure out what is wrong.  As you can see, the dashboard shows 68 of them.  i've tried updating from the client end as well as the console, but nothing changes.  What am I doing wrong?

Dashboard

Thank You For any help that you can offer -  It's MUCH appreciated!

:5441


This thread was automatically locked due to age.
Parents
  • 0

    Hello,

    If you believe that many of the machines are not likely to return then you could consider using purgedb.exe in the Enterprise Console directory.  With this tool you can purge machines that have not messaged in within X number of days.

    Info on PurgeDB

    http://www.sophos.com/support/knowledgebase/article/109884.html

    BTW, the latest version now works on 64-bit.

    This should enable you to concentrate on the genuine machines.

    After that, the machines that are out of date, do they show as unknown as well as not since?

    For the machines that are left and differ from policy, for which component do they differ, SAV, SCF, etc.. You'll have to flick through the tabs as the compliance state on the main tab takes them all into consideration.

    Thanks,

    Jak

    :5443
Reply
  • 0

    Hello,

    If you believe that many of the machines are not likely to return then you could consider using purgedb.exe in the Enterprise Console directory.  With this tool you can purge machines that have not messaged in within X number of days.

    Info on PurgeDB

    http://www.sophos.com/support/knowledgebase/article/109884.html

    BTW, the latest version now works on 64-bit.

    This should enable you to concentrate on the genuine machines.

    After that, the machines that are out of date, do they show as unknown as well as not since?

    For the machines that are left and differ from policy, for which component do they differ, SAV, SCF, etc.. You'll have to flick through the tabs as the compliance state on the main tab takes them all into consideration.

    Thanks,

    Jak

    :5443
Children
No Data