This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cant deploy Sophosinstaller.exe as appears installer can't communicate with proxy server although everything has been opened up for the migration.

Hi,

I am a Sys Admin and am really stumped on how to migrate from Sophos Enterprise console to Sophos Central. I will explain the scenarios below. I really need help resolving this as else we can't deploy without totally opening up FW which will not happen.

In our proxy we have the following entries so they go direct to the internet but it appears that the client doesn't even get that far to speak to the proxy server to get redirected.

else if ( shExpMatch(host, "*sophos.com*") ||
     shExpMatch(url, "*sophosupd.com*") ||
     shExpMatch(url, "*sophosxl.net*") ||
     shExpMatch(url, "*ocsp2.globalsign.com*") ||
     shExpMatch(url, "*crl.globalsign.com*") ||
     shExpMatch(url, "*sophosupd.net*"))

{
return "DIRECT";
}

If via IE I connect to say http://dci.sophosupd.com/ I get 'Sophos dci Site Connection Successful' message which I wouldn't with the old proxy settings which do not have the above entries.

So whilst doing the install the error message is (see below)

I get pointed to https://community.sophos.com/kb/en-us/122157 which then points me to https://community.sophos.com/kb/en-us/120453. I have followed both but wit no success.

15/03/2017,17:03:04,Information,------------------ Beginning installation of Sophos Anti-Virus and AutoUpdate ------------------,
15/03/2017,17:03:04,Information,Setup version 3.3.1.809,
15/03/2017,17:03:04,Information,Command line: c:\users\bplav\appdata\local\temp\sophos_bootstrap\setup.exe -server dzr-mcs-amzn-us-west-2-fa88.upe.p.hmr.sophos.com -token ***************** -edxtimestamp 20170306T135328Z,
15/03/2017,17:03:04,Information,Process security set successfully,
15/03/2017,17:03:04,Information,Setup program was run from C:\Users\bplav\AppData\Local\Temp\sophos_bootstrap,
15/03/2017,17:03:04,Information,Checking system TMP paths.,
15/03/2017,17:03:04,Information,Checking TMP...,
15/03/2017,17:03:04,Information,Temp path for System found: 'C:\Windows\TEMP'.,
15/03/2017,17:03:04,Information,Tamper protection inactive,
15/03/2017,17:03:04,Information,Unable to query DWORD: SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\TamperProtection\Config\SEDEnabled,
15/03/2017,17:03:04,Information,Unable to query DWORD: SYSTEM\CurrentControlSet\services\Sophos Endpoint Defense\TamperProtection\Config\IgnoreSAV,
15/03/2017,17:03:04,Information,mrinit.conf file path:,
15/03/2017,17:03:04,Information,C:\Program Files (x86)\Sophos\Remote Management System\mrinit.conf,
15/03/2017,17:03:04,Information,Checking if Sophos Anti-Virus or Sophos AutoUpdate are installed...,
15/03/2017,17:03:04,Information,Sophos Anti-Virus is already installed on your computer.,
15/03/2017,17:03:04,Information,Sophos AutoUpdate is already installed on your computer.,
15/03/2017,17:03:04,Information,Sophos Remote Management System is already installed on your computer.,
15/03/2017,17:03:04,Information,Starting wizard to collect information from user...,
15/03/2017,17:03:07,Information,Checking for internet connectivity...,
15/03/2017,17:03:29,ERROR,Failed to send a WinHttp request. The error code was 12002 (The operation timed out).,
15/03/2017,17:03:29,ERROR,Failed to connect to the URL http://dci.sophosupd.com/.,
15/03/2017,17:03:29,ERROR,An internet connection could not be established.,
15/03/2017,17:03:43,Information,------------------ Found errors during installation: 143 ------------------,
15/03/2017,17:03:43,Information,------------------ Installation program finishing with code 143 ------------------,
15/03/2017,17:03:43,Information,Writing decoration to RMS: {SC:Error:0;143},
15/03/2017,17:03:43,Information,Using computer description: ,
15/03/2017,17:03:43,Information,Writing new description: {SC:Error:0;143},

All the above is via a manual install using sophosinstaller.exe.

I have also tried (which is my preferred method) Sophos Cloud Migration Toolkit which encounters the same issue.

If I switch the endpoint device on to the network administrators VLAN then the install works and is working well, but we can't do this to around 1000 machines so we need a workable solution which I would expect Sophos to have but can't locate anything on the community forums.

I have not tried installing via GPO and understand that this causes an extra hurdle due to being installed in the SYSTEM context.

This thread was automatically locked due to age.

0 jak over 7 years ago

I'd suggest it might be worth running in an administrative command prompt:

netsh trace start scenario=internetclient

retry, and then run:
netsh trace stop

You can load the resultant file into Microsoft Message Analyzer (www.microsoft.com/.../details.aspx and correlate the times in the logs. I believe, it's just performing a HEAD request at that stage.

Regards,

Jak
Cancel
Vote Up 0 Vote Down

Cancel