Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 20 replies
  • Subscribers 30 subscribers
  • Views 71050 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to make security heartbeat work?

ShunzeLee

Dear Sir,
I have apply a trial Sophos Central for 30 days,
and make it to integrate with XG home version.

Both the Central & XG get sync each other,
but the XG's Security Heartbeat always show 0.

How to make XG's security Heartbeat work?

Sophos Central's license as below.

XG's security heartbeat enabled.

Sophos Central get XG appliance.

Sophos Central has user & computer on it.



But the security heartbeat is always 0?

If I enable security heartbeat on LAN to WAN rule,
the user would be blocked, since it's status won't sync to XG.

Anybody know what's wrong with the setting?



This thread was automatically locked due to age.
Parents
  • 0

    I think the key point is Endpoint's heartbeat service but not V15 or V16.

    On other site that heartbeat works, the Endpoint's service show a sophos heartbeat service.

    But on my site, the Sophos Heartbeat is not installed.
    Only three service was installed on client.

     

    I install the Sophos Central on Client as the following url.
    https://community.sophos.com/kb/en-us/120611

    But as you see, the install process didn't install the Sophos heartbeat service correctly...

    Anybody knows how to deploy Sophos Central on AD environment, and make security hearbeat works!

    Shunze

  • 0 in reply to ShunzeLee

    Shunze,

    make sure you are using the proper version of Sophos Endpoint. Not all version integrates Hearbeat. Look at the second page of this datasheet:

    https://www.sophos.com/en-us/medialibrary/PDFs/factsheets/sophos-security-heartbeat_dsna.pdf?la=en

    Only:

    Sophos Cloud Endpoint

    Protection Advanced

    or

    Sophos Cloud Enduser Protection

    are supported!

     
     
  • 0 in reply to lferrara

    Thanks Luk.

    How to check it's version?

    I just enable a 30 days trial Central, I don't know how to check it's version.

  • +1 in reply to ShunzeLee

    Shunze,

    as you can see the license is "Enduser Protection" and not Endpoint advanced. Contact your partner to have a trial where HB is included.

    However the problem you have is different from the object of this thread. :-)

    Thanks

  • +1 in reply to lferrara

    Dear All,

    Finally, my lab site's security heartbeat works!

    First of all, Windows XP doesn't support anymore, so I change the client to Win7 on V15.

    But Win7 on V15 still failed, so I change my LAB to V16.

    Wait a long time, Win7 can download something from Sophos suddenly.


    And then the system bar got a new Sophos icon.

    After sync successfully, security heartbeat finally works on V16.

     

    But I remove the Sophos Endpoint and try again on V15.
    I got the following error, Sophos can't download file from http://dci.sophosupd.com/update.

    So I add the allow FQDN host "dci.sophosupd.com" on top of Sophos.

    Then file can download from Sophos, and security heartbeat can work on V15 finally.

    Thanks Varunparikh, but in my V15 lab, I need one more FQDN host "dci.sophosupd.com" to make security heartbeat works!

    Thanks for you all~

  • 0 in reply to ShunzeLee

    Thanks Shunze for your tests and feedback.

    As I said I do not like at all that blocking internet to a computer will block also communication with Sophos hb cloud service.

    This is something that should change. There is not even a kb that describes the URL to allow but I only understood that thank to this thread and your tests.

    Thanks again!

  • 0 in reply to varunparikh

    Varun,

    do we need to open a feature request to allow HB communication with Cloud without using a proper Firewall rule?

    I think that Inherently it should work as I suggested.

    Thanks

  • 0 in reply to lferrara

    Hi All

    Has this issue been fixed in the latest update or will it be fixed in future updates...been 1 year later as I've just come across this page and I'm having the exact same communication/ download install issues as mentioned by the initial forum user.

     

    I'm about to troubleshoot by uninstalling the Endpoint Advanced for Win 10 on one laptop, create the XG85w rule as mentioned at the top of exceptions list, and reinstall the Endpoint Advanced.

     

    Problem I have is that I've already done this on another machine with same os specs, and I've had no problems since. This problem just occured on a recent install (1 month ago)...so strange how one works and one doesn't....sigh...

Reply
  • 0 in reply to lferrara

    Hi All

    Has this issue been fixed in the latest update or will it be fixed in future updates...been 1 year later as I've just come across this page and I'm having the exact same communication/ download install issues as mentioned by the initial forum user.

     

    I'm about to troubleshoot by uninstalling the Endpoint Advanced for Win 10 on one laptop, create the XG85w rule as mentioned at the top of exceptions list, and reinstall the Endpoint Advanced.

     

    Problem I have is that I've already done this on another machine with same os specs, and I've had no problems since. This problem just occured on a recent install (1 month ago)...so strange how one works and one doesn't....sigh...

Children