Hello,
Update function doesn't working with SAV Endpoint for Linux.Could not decide that this is issue with the connection trough our enterprise proxy service or the root cause the failed authentication to SAV update service.
Update already configured with 'savsetup' to using the proxy (our_proxy_address in the logs) and set the Sophos account to authenticate to SAV update service as well.Can I use the Sophos account directly for this purpose?
Following log entries are visible in the logs.
Regards,Gabor<log><category>update.failed</category><level>ERROR</level><domain>savupdate</domain><msg>BAD-PRIMARY-AUTHENTICATION %s</msg><time>1645999763</time><arg>sdds:SOPHOS</arg></log>
2022-02-28 10:09:28,223 DEBUG savupdate.util.Logger: log_entry: [E26245] Cannot locate server for dci.sophosupd.net/.../0c86985b5983caf13a389b476a07fdcb.dat2022-02-28 10:09:28,223 DEBUG savupdate.util.Logger: log_entry: [I20317] Proxy used was: "noproxy:".2022-02-28 10:09:28,223 DEBUG savupdate.util.Logger: log_entry: [E75373] Ran out of sophos aliases for this update source2022-02-28 10:09:28,223 DEBUG savupdate.util.Logger: log_entry: [E19127] Couldn't find DCI for user. URL was: dci.sophosupd.com/.../2022-02-28 10:09:28,223 DEBUG savupdate.util.Logger: log_entry: [I31036] Proxy used was: "">our_proxy_address:8080/".2022-02-28 10:09:28,223 DEBUG savupdate.util.Logger: log_entry: [E19127] Couldn't find DCI for user. URL was: dci.sophosupd.net/.../
2022-02-28 10:09:28,225 ERROR savupdate.Updater: BadAuthenticationErrorTraceback (most recent call last): File "Updater.py", line 179, in tryUpdate File "Updater.py", line 147, in update File "SddsUpdater.py", line 784, in update File "SddsUpdater.py", line 934, in __update File "SDDSResult.py", line 92, in throwOnErrorBadHostCredentialsException: BadHostCredentialsException for sdds:SOPHOS2022-02-28 10:09:28,225 DEBUG savupdate.util.Logger: BAD-PRIMARY-AUTHENTICATION sdds:SOPHOS2022-02-28 10:09:28,226 DEBUG savupdate.util.Logger: ALL_UPDATE_SOURCES_FAILED
Hello Gabor,
seems to be the Free version. If these update failures started 10th Jan or so then it is - or rather was as it has been retired. When you run savupdate do you get the same error as in this…
is this indeed Intercept X or perhaps the Free or On-Premise version 9? And BTW, it's better to post a larger snippet (in case of update problems a complete cycle) snippet as the obvious messages often tell just the final result but not (details pertaining) the underlying cause. In this case the log would e.g. tell something about the version.What do you mean by Sophos account, what does it look like?
Christian.
Hello Christian,Sophos Anti-Virus for Linux (on-access) v9.17.1Some credential has been used within the SAVSETUP to authenticate to SAV update service and using this forum as well.Not sure that not a specific license / credential needed for this purpose. Log of the entire cycle available here:Mozilla Community Pastebin/fOxHOOxS (JavaScript)Thanks a lot for your prompt answer.Regards,Gabor
seems to be the Free version. If these update failures started 10th Jan or so then it is - or rather was as it has been retired. When you run savupdate do you get the same error as in this thread?
Christian
Hello Christian,Yes, this is exactly the situation.Thanks for the clarify.Regards,Gabor
Thank you!