Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 14845 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Remotely re-installing Sophos endpoint

RogueViper

Hi 

I wonder if anyone can help me. Over the past 6 months I have been struggling to resolve endpoints that are unmanaged but have Sophos installed and are updating. Unfortuntly my job isn't to fix problems but to flag them up for another team to resolve. I have now gotten to the point of just fixing it myself.

At the start there must of been in excess of 100+ unmanaged hosts; which were missing the RMS component of Sophos due to most likely an incorrect image being used for new desktops/laptops. I have managed to resolve apporox 50 hosts by using the protect feature in SEC which reinstalled Sophos and the hosts appeared in SEC. 

The remaining hosts are laptops, which are running XP but the remote protect feature doesn't appear to work. I can see the scheduled task being created and the configuration of the hosts is no different to that of the previous 50 hosts I have resolved. 

Can anyone point me in a direction on how to resolve this issue? Is there any way of just resinstalling RMS component remotely?

:21665


This thread was automatically locked due to age.
Parents
  • 0

    Hi Christian .

    Is there a way of remotely running the ClientMRIniti.exe without the user knowing?

    One thing I have noticed which is interesting, when using the protect function in SEC the scheduled install task appears, the endpoint software is reinstalled. But the updating details are incorrect in the iconn file even though the machine is in the correct SEC group and should have the same updating settings as the updating policy. So I have to manually copy the iconn file from a working laptop and hey presto it updates. But yet still doesn't appear in SEC even though the RMS components are all installed. 

    The above sceniario is occuring with a laptop that has never been managed by the other SEC and resides on the HQ LAN. 

    I appologise for my lack of knowledge; coming out of Uni straight into my first IT security job and learning lots of new things. After 8 months of using Sophos I must say I am pretty impressed with it and end up defending it when users start moaning. 

    :21865
Reply
  • 0

    Hi Christian .

    Is there a way of remotely running the ClientMRIniti.exe without the user knowing?

    One thing I have noticed which is interesting, when using the protect function in SEC the scheduled install task appears, the endpoint software is reinstalled. But the updating details are incorrect in the iconn file even though the machine is in the correct SEC group and should have the same updating settings as the updating policy. So I have to manually copy the iconn file from a working laptop and hey presto it updates. But yet still doesn't appear in SEC even though the RMS components are all installed. 

    The above sceniario is occuring with a laptop that has never been managed by the other SEC and resides on the HQ LAN. 

    I appologise for my lack of knowledge; coming out of Uni straight into my first IT security job and learning lots of new things. After 8 months of using Sophos I must say I am pretty impressed with it and end up defending it when users start moaning. 

    :21865
Children
No Data