Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Subscribers 5 subscribers
  • Views 13199 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

AD Sync Issues / SG Inconsistencies in your database Warning

MarkRobinsonUK

Hi,

SG Version 6.10.0.374

Last nightly full AD sync was successful.

We currently getting the warning prompt when logging into SG "We have found inconsistencies in your database, which shoudl be corrected quickly. Please contact Sophos Support for further assistance"

Support have offered the Keytester tool specific to our SG version. The Keytester tool returns nothing after ‘‘‘‘Check only structure keys’’’’, ‘‘‘‘Check group and structure keys’’’’, ‘‘‘‘Check user and structure keys’’’’ and ‘‘‘‘Check computer and structure keys’’’’. (All Objects selected and under a new MSO account). 

We have noticed that we have started to get duplicated users in our database when viewing manually via the MC.

Anyone else experienced this problem or have heard back from support with a fix?

Thanks

:54872


This thread was automatically locked due to age.
  • 0

    Update from support.

    Given that you are not finding anything with the tool yet the flag is still set in the database to alert you to there being a corruption, it appears a damaged key has been remediate - be it that the key was repairable or had to be deleted.

    By all means double check and run the tool again and if they are not any issues reported, please apply the SQL query that is found at the bottom of the documentation to remove the flag for that alert when you open the Management Center.

    Let me know if you have any further questions or whether you would be happy for me to close this case for you.

    :54902
  • 0

    FYI. We still could see 63 duplicate user entries in our database (different GUIDs).

    We manually removed these users to tidy it up. Hopefully over the next few days we won't see any duplicates entering our Sophos DB.

    :54903
  • 0

    Hi Mark,

    Are you currently using a script/task to sync AD? 

    We are currently having the exact same issue. The keyster tool returns nothing. When I run the SQL query to clear the flag that triggers these warning it is successful but after closing the console and re-opening the warning returns. I have what may be a silly question but is there an easy way to find duplicate users? Did clearing out the duplicates solve your problem? 

    Thanks. 

    :55038
  • 0

    We use the Task Scheduler built into the MC to sync with AD every morning.

    Regarding the duplicate users (in our case) it was easy to identify as it was one OU that was clearly effected. Maybe it was an early manual sync that was performed that went wrong. The duplicate entries had unique GUIDs - maybe search by User name ( Mark Robinson) to highlight dupluicates?

    Failing that, raise a support call and see what they say. 

    :55039
Unfiltered HTML