The Sophos Community will be offline for scheduled maintenance this Saturday, May 27th, at 13:00 UTC for approximately 1 hour. Apologies for any inconvenience caused.
"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
When using virtual machines that run on a virtualization server, it is possible to run several instances of the same virtual machine from an original ‘gold image’. Because the identity is normally set at the time of the software installation, when multiple instances of the gold image are run at the same time, being exact replicas, they all attempt to use the same identity.
It follows from this that if the UTM9 endpoint software is installed onto the original gold image, all the virtual machines created from that gold image will have the same identity in the management console. This makes it impossible to correctly control the set of endpoint computers.
This article describes how to install UTM9 endpoint software on a gold image, so that every instance of a virtual machine run from that single gold image gets its own unique identity. This allows it to be managed correctly from the UTM console.
Known to apply to the following Sophos product(s) and version(s)
Sophos UTM v9
In order to run UTM9 on gold images, you must force the MCS client to re-register with the server so that a new ID is assigned. This must be done when the new instance of the gold image is started for the first time.
The following procedure describes how to perform this process manually. If you wish to automate this process, refer to the section below: "Alternative ways of applying the changes".
%appdata%\Sophos\Management Communications System\Endpoint\Persist\
%ALLUSERSPROFILE%\Application Data\Sophos\Management Communications System\Endpoint\Persist\
%appdata%\Sophos\Management Communications System\Endpoint\Config\
%ALLUSERSPROFILE%\Application Data\Sophos\Management Communications System\Endpoint\Config\
Alternative ways of applying the changes
Once the gold image is ready you can created a batch file containing commands of the type used above. This batch file is passed in the 13 character registration token as a parameter and performs the required steps
You must shut down the computer so that the next time it is started up, a new id is assigned.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.