Thread Info
  • State Not Answered
  • Replies 2 replies
  • Subscribers 12 subscribers
  • Views 682 views
  • Users 0 members are here
Options
Suggested

cloned VM for testing purpose - fix Sophos Central GUID with golden image script?

LHerzog

Can I simply run the Golden Image script https://support.sophos.com/support/s/article/KB-000035040?language=en_US#Script when I want to clone a server VM with Intercept-X installed? Some tests need to be done on the cloned VM before it will be deleted again.

As far as I understand the KB I should now NOT delete the initially cloned VM with the yellow exclamation mark which has been inactive since July 13th because this would also delete the original green VM named ...01 last active July 15th 9:09?



Edit Tags
[edited by: GlennSen at 1:34 PM (GMT -7) on 7 Aug 2024]
Parents
  • 0

    Hi LHerzog,

    Thanks for reaching out to the Sophos Community Forum. 

    If you will no longer have a use for the original device, it can safely be deleted. One way to verify it is safe to remove the old entry is to check the Persists folder against the URL shown in Sophos Central when browsing the device(s) you wish to keep connected. The UUID in this file will match the URL in Sophos Central. 
    - C:\ProgramData\Sophos\Management Communications System\Endpoint\Persist\EndpointIdentity.txt

    If you find that two different local devices share the same "EndpointIdentity", this is where problems can arise. This should not be the case when using the gold image script or cli option.

    The following is also mentioned in the documentation:
    Notes:

    • If the device from where the gold image will be taken will no longer be used, it can be safely deleted from the Central dashboard before running the script to avoid duplicates. In case it is accidentally deleted, its tamper protection password can be recovered by following Sophos Central: Restore a deleted device .  

     

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Reply
  • 0

    Hi LHerzog,

    Thanks for reaching out to the Sophos Community Forum. 

    If you will no longer have a use for the original device, it can safely be deleted. One way to verify it is safe to remove the old entry is to check the Persists folder against the URL shown in Sophos Central when browsing the device(s) you wish to keep connected. The UUID in this file will match the URL in Sophos Central. 
    - C:\ProgramData\Sophos\Management Communications System\Endpoint\Persist\EndpointIdentity.txt

    If you find that two different local devices share the same "EndpointIdentity", this is where problems can arise. This should not be the case when using the gold image script or cli option.

    The following is also mentioned in the documentation:
    Notes:

    • If the device from where the gold image will be taken will no longer be used, it can be safely deleted from the Central dashboard before running the script to avoid duplicates. In case it is accidentally deleted, its tamper protection password can be recovered by following Sophos Central: Restore a deleted device .  

     

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Children
Unfiltered HTML
Help Us Improve The Community
Unfiltered HTML