This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

cloned VM for testing purpose - fix Sophos Central GUID with golden image script?

Can I simply run the Golden Image script https://support.sophos.com/support/s/article/KB-000035040?language=en_US#Script when I want to clone a server VM with Intercept-X installed? Some tests need to be done on the cloned VM before it will be deleted again.

As far as I understand the KB I should now NOT delete the initially cloned VM with the yellow exclamation mark which has been inactive since July 13th because this would also delete the original green VM named ...01 last active July 15th 9:09?



This thread was automatically locked due to age.
Parents
  • Hi LHerzog,

    Thanks for reaching out to the Sophos Community Forum. 

    If you will no longer have a use for the original device, it can safely be deleted. One way to verify it is safe to remove the old entry is to check the Persists folder against the URL shown in Sophos Central when browsing the device(s) you wish to keep connected. The UUID in this file will match the URL in Sophos Central. 
    - C:\ProgramData\Sophos\Management Communications System\Endpoint\Persist\EndpointIdentity.txt

    If you find that two different local devices share the same "EndpointIdentity", this is where problems can arise. This should not be the case when using the gold image script or cli option.

    The following is also mentioned in the documentation:
    Notes:

    • If the device from where the gold image will be taken will no longer be used, it can be safely deleted from the Central dashboard before running the script to avoid duplicates. In case it is accidentally deleted, its tamper protection password can be recovered by following Sophos Central: Restore a deleted device .  

     

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Reply
  • Hi LHerzog,

    Thanks for reaching out to the Sophos Community Forum. 

    If you will no longer have a use for the original device, it can safely be deleted. One way to verify it is safe to remove the old entry is to check the Persists folder against the URL shown in Sophos Central when browsing the device(s) you wish to keep connected. The UUID in this file will match the URL in Sophos Central. 
    - C:\ProgramData\Sophos\Management Communications System\Endpoint\Persist\EndpointIdentity.txt

    If you find that two different local devices share the same "EndpointIdentity", this is where problems can arise. This should not be the case when using the gold image script or cli option.

    The following is also mentioned in the documentation:
    Notes:

    • If the device from where the gold image will be taken will no longer be used, it can be safely deleted from the Central dashboard before running the script to avoid duplicates. In case it is accidentally deleted, its tamper protection password can be recovered by following Sophos Central: Restore a deleted device .  

     

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Children