This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Safeguard

Hi,

 

I have a number of Desktop PC's and Laptops that are at remote locations that don't require to be on our Domain as they are running Citrix.

 

We have been told to get them to work with Sophos Safeguard, we will need to import the certificate in the 'Personal' section of 'Certificates'.

 

The above has been tried with no success, can anyone help or suggest anything I am missing?

 

Kind regards, Dan Petford



This thread was automatically locked due to age.
Parents
  • Hi Dan - Although they're not on the domain, are you treating them like domained machines?

     

    Does your SafeGuard server have a secondary DMZ server, or is the primary server accessible to them (via public/VPN etc..)

     

    They can work with Sophos but they either have to have access to the server, or treated as standalone clients. With the standalone clients you can create a package configuration file to apply to the client that contains the policies, but the key backup location would have to be stored somewhere for the recovery of the device - ideally somewhere centrally and obviously not stuck on the client! 

  • Yes, we do have a secondary server in dmz (well port forwarded actually, but same end result) – that’s what allows the remote domain-joined PC’s to sync with safeguard. Just to clarify that remote domain computers are fine, just the workgroup ones that won’t connect.

    I did find that the local machine required a password, so have set one, and it started to initialise, however it still doesn't connect to the server, and the status is a Guest now.

  • Ah ok - Thanks Dan. Sounds like you've set it up well. Have you created a matching workgroup name for the remote laptops and are they all in the same workgroup name?

    If the workgroup name (you could just use "workgroup" but a bit lazy/confusing!) matches the workgroup name on the clients, they'll populate the auto-registered group. 

    You could then apply the same policies from your successful machines to the "auto-registered" workgroup folder. 

    Sophos client doesn't like blank passwords on accounts, so always best to set one. 

    It's also worth using the client connection tool (assuming you have V7 or better?)  - ON the client, C:\Program Files (x86)\Sophos\SafeGuard Enterprise\Client\SGNCSCC.exe.

     

     

     

Reply
  • Ah ok - Thanks Dan. Sounds like you've set it up well. Have you created a matching workgroup name for the remote laptops and are they all in the same workgroup name?

    If the workgroup name (you could just use "workgroup" but a bit lazy/confusing!) matches the workgroup name on the clients, they'll populate the auto-registered group. 

    You could then apply the same policies from your successful machines to the "auto-registered" workgroup folder. 

    Sophos client doesn't like blank passwords on accounts, so always best to set one. 

    It's also worth using the client connection tool (assuming you have V7 or better?)  - ON the client, C:\Program Files (x86)\Sophos\SafeGuard Enterprise\Client\SGNCSCC.exe.

     

     

     

Children