When troubleshooting a problem on a remote computer Sophos Technical Support may request the Sophos Diagnostic Utility (SDU) be used to gather information. Network administrators may not have direct access to remote computers. Therefore running the sducli.exe (Sophos Diagnostic Utility Command Line Interface) tool using the windows task scheduler logs can be collected from a remote computer.
Installing the SDU tool on the Sophos Management server and using the existing 'SophosUpdate' share you can collect logs from the remote computer and have the output file written to the 'SophosUpdate' share.
As of April 2013, the SDU tool is included in SAV for Windows 10.0 and above. If you cannot find it, see article 33533 for alternate downloads.
Applies to the following Sophos products and versions Sophos Anti-Virus for Windows 2000+
The following steps should be performed on the Sophos Management Server.
schtasks /create /s client /u domainName\administrator /p password /ru domainName\administrator /rp password /sc once /st hh:mm:ss /tn "Sophos Diagnose" /tr "\\serverName\SophosUpdate\CIDS\S000\SAVSCFXP\diagnose\sducli.exe -logdir=\\serverName\SophosUpdate\sduOutput\"
schtasks /create /s client /u
Note: PSExec is classed as a PUA (Potentially Unwanted Application) by Sophos and will need to be authorised for use on your computers.
From the server hosting your Sophos Update Manager packages.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.