Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 10685 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

New Install vs. Migrating

jerryn3

I was told it would be easier to intall a fresh copy of Enterprise Console on a new server rather than migrating. I have 55 users. I want to move from Windows 2003 Server to Windows Server 2012. Anyone have any experience with this?

:48348


This thread was automatically locked due to age.
Parents
  • 0

    A fresh install would mean:

    1. No database so no group structure, nor group polices and no historical data about threats or computer history (the last one can be important to companies tracking year-on-year threats).
    2. The server would create brand new certificates and all existing endpoint installations would then have out of date certificates.  No real problem if you plan to re-protect all the computers.  However that is a consideration about losing the old certificates:
    3. Assuming you kept the same server hostname/IP address for the server the clients, with the now incorrect certificates, would be able to route messages to the new server but all those messages would be blocked as the certificates won't match.

    If you don't need the computers, groups, and historical data in the database starting fresh on that is simpler and forgoing the backup/restore will save you some time.  However it's always worth copying over the certificates...

    http://www.sophos.com/en-us/support/knowledgebase/117463.aspx

    ...especially if the new server has the same network settings as the old one as you avoid 55 computers trying to send messages to the Sophos Certification service and that service having to repeatedly deny the request (which slows down valid messages trying to get processed in the queue).  You would generally have to have tens of thousands of endpoints to really see a problem but I have been involved in troubleshooting that so I now suggest thecertificates are always kept.

    :48390
Reply
  • 0

    A fresh install would mean:

    1. No database so no group structure, nor group polices and no historical data about threats or computer history (the last one can be important to companies tracking year-on-year threats).
    2. The server would create brand new certificates and all existing endpoint installations would then have out of date certificates.  No real problem if you plan to re-protect all the computers.  However that is a consideration about losing the old certificates:
    3. Assuming you kept the same server hostname/IP address for the server the clients, with the now incorrect certificates, would be able to route messages to the new server but all those messages would be blocked as the certificates won't match.

    If you don't need the computers, groups, and historical data in the database starting fresh on that is simpler and forgoing the backup/restore will save you some time.  However it's always worth copying over the certificates...

    http://www.sophos.com/en-us/support/knowledgebase/117463.aspx

    ...especially if the new server has the same network settings as the old one as you avoid 55 computers trying to send messages to the Sophos Certification service and that service having to repeatedly deny the request (which slows down valid messages trying to get processed in the queue).  You would generally have to have tens of thousands of endpoints to really see a problem but I have been involved in troubleshooting that so I now suggest thecertificates are always kept.

    :48390
Children
No Data