We've recently migrated from on-prem to Central. We're in the last stages of replacing the on-prem client with the Central client but on our 2008 R1 SP2 servers we're getting this error shown in the screenshot.
When we inspect our Firewall logs, it appears the remote end is rejecting it. Has anyone seen this before and how do we overcome it? The KB article referenced doesn't help as we don't have the Cloud Installer log files directory to see what's happening.
Hi Lanky Doodle
Could you please check under the %temp% folder if there are any specific logs created for Sophos Installation? Also, could you please make sure that these domains and ports are allowed in your network?
Thanks for the super quick reply.
Just to confirm, this issue only appears on 2008 R1 SP2 machines. All other machines, including clients and Servers running 2008 R2 all the way up to 2019 are fine.
%Temp% doesn't show anything else either.
PS: We're using the installer from Sophos Central portal for Windows Servers.
Check for the install log under the user's profile. The preflight check logs there and only after that does it start logging into %temp%
Snr. New Product Introduction Engineer | CISSP | Sophos Technical SupportSupport Videos | Product Documentation | @SophosSupport | Sign up for SMS AlertsIf a post solves your question use the 'Verify Answer' link.
What's in the log file: \programdata\sophos\cloud installer
As they are 2008 R1 machines I would look into seeing if TLS 1.2 is enabled on the servers. My understanding is that this is not enabled by default on this OS. Communication to Sophos Central requires TLS 1.2.
You may also need to enable TLS 1.2 for WinHTTP on the server:https://support.sophos.com/support/s/article/KB-000038283?language=en_US
Thanks for the replies. Not had a chance to pick this up but will and report back.