Secure heartbeat with different registered accounts

Hello Carlos,

Thank you for contacting the Sophos Community.

In this case, you would only need to enable Sync Security in the XG and enable Heartbeat in Central.

The XG will not care about the Certificate of the Endpoint and only the health status.

The endpoint will use the NTP component to send packets to the magic IP 52.5.76.173 over port 8347.
Once the traffic hit's the XG, the XG can note down the heartbeat status and relays this back to the endpoint
The XG will now know the heartbeat status of the endpoint and apply restrictions based on its health

Regards,

Hello Carlos,

Thank you for contacting the Sophos Community.

In this case, you would only need to enable Sync Security in the XG and enable Heartbeat in Central.

The XG will not care about the Certificate of the Endpoint and only the health status.

The endpoint will use the NTP component to send packets to the magic IP 52.5.76.173 over port 8347.
Once the traffic hit's the XG, the XG can note down the heartbeat status and relays this back to the endpoint
The XG will now know the heartbeat status of the endpoint and apply restrictions based on its health

Regards,

Hello emmosophos 

Thank you by your feedback!

I will try todo these steps and report here the results!

Best regards

Carlos

Hi emmosophos 

Today we started the deployment of Endopint.

Before install Endpoint on the computer I enabled the Security Heartbeat on the XG device previous registred on Sophos Central.

After installed the endpoint in 2 Worstations and 1 Server we  decided monitoring the Sophos XG to check if the syncronization it works, but after 3 hous none info it was diplayed and in this period, none info pass by tcpdump with destination to host 52.5.76.173.

I already tried restart the service on XG

# service heartbeat:restart -ds nosync

No tcpdump data

# tcpdump -i any  host 52.5.76.173

Is there any more step to do ? Could you please assist us with this ?

best regards,

Carlos

Hi emmosophos 

Do you have any tip for this?

Any documentation, or technical instructions for this ?

regards

Carlos

Hello Carlos,

I am checking with a co-worker from the endpoint side, I think I am missing something here. 

I will get back to you tomorrow. 

Regards,

Hello emmosophos 

Sure!

Thank you so much by your feedback!

Regards,

Carlos

Hello Carlos,

I confirmed and in order for it to work, you need to register the XG in the same Sophos Central account where the endpoints are located.

Regards,

Hi MEric and emmosophos 

:(

Thank you so much by your infos!!

Regards

Carlos