Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 9 replies
  • Subscribers 2 subscribers
  • Views 7628 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

What can i do for systems not on the networks and also without internet?

Kandarp Desai1

We have SEC installed in our clients premises but they have a few systems without network or internet access. How can we keep the Sophos AV updates ? Will the standalone installer work in this scenario?



This thread was automatically locked due to age.
Parents
  • +1

    I would suggest that you could take a copy of the distribution point from the server and copy it to the client, I guess using a USB stick.

    You can then install (run setup.exe) from this local "share" without installing RMS (setup -mng no) https://community.sophos.com/kb/en-us/12570.

    You can then update the computer by regularly copying the distribution point to the client that AutoUpdate is checking. 

    If you do need to setup policy, you could create a specific CID on the server and use exportconfig and configcid to configure it with XML files.
    https://community.sophos.com/kb/en-us/13111

    Regards,
    Jak

  • 0 in reply to jak

    Hi Jak,

     

    What is to be entered in the share path and username\password? 

    setup.exe -mng no -scf -crt R -updp \\myServer\Sophos\CIDs\S000\savscfxp\ -ouser SIhvF6vRtcGyG0mpJWdvIAc=  
     -opwd EIhvI6vRtcEyG0mpKWdvIAc= -s -ni

  • +1 in reply to Kandarp Desai1

    Well if you have a SEC server here for example

    \\secserver\Sophos\CIDs\S000\savscfxp\

    Then you would copy over S000 to the endpoint so you might have:

    C:\Sophos\CIDs\S000\savscfxp\

    You could then run:
    setup.exe -mng no -scf -crt R -updp C:\Sophos\CIDs\S000\savscfxp -s -ni

    Do you even need a username and password to update from the local computer?

    I think a local path is fine for updating rather than having to share out say Sophos on the local computer to make:
    \\127.0.0.1\sophos\CIDs\S000\savscfxp\

    Then when you want to update the client, you would check it's not in a mid update, (is alupdate.exe running) and copy over:
    \\secserver\Sophos\CIDs\S000\savscfxp\
    to 
    C:\Sophos\CIDs\S000\savscfxp\

    On the next update check SAU should see the new files and update or you could force it if needed.

    You night have to test this, I assume it all works.

    Regards.

Reply
  • +1 in reply to Kandarp Desai1

    Well if you have a SEC server here for example

    \\secserver\Sophos\CIDs\S000\savscfxp\

    Then you would copy over S000 to the endpoint so you might have:

    C:\Sophos\CIDs\S000\savscfxp\

    You could then run:
    setup.exe -mng no -scf -crt R -updp C:\Sophos\CIDs\S000\savscfxp -s -ni

    Do you even need a username and password to update from the local computer?

    I think a local path is fine for updating rather than having to share out say Sophos on the local computer to make:
    \\127.0.0.1\sophos\CIDs\S000\savscfxp\

    Then when you want to update the client, you would check it's not in a mid update, (is alupdate.exe running) and copy over:
    \\secserver\Sophos\CIDs\S000\savscfxp\
    to 
    C:\Sophos\CIDs\S000\savscfxp\

    On the next update check SAU should see the new files and update or you could force it if needed.

    You night have to test this, I assume it all works.

    Regards.

Children
  • 0 in reply to jak

    Hi Jak,

     

    I have tested this at one clients place but since we have not copied the warehouse folder still it is showing as updated, i cant understand how.

     

    Where should i copy and paste the warehouse folder ?

     

  • 0 in reply to Kandarp Desai1

    You're not copying the warehouse but the CID/distribution point.

    Anywhere on the computer is fine really. C:\Sophos\ was just an example.

  • 0 in reply to jak

    Hi Jak,

    Sorry if i am not following it properly, i am listing out what am currently doing.

    - Have a PC with no network connection ( no LAN or WAN)

    -I copy the folder "\\secserver\Sophos\CIDs\S000\savscfxp\" from the server    to    "C:\Sophos\CIDs\S000\savscfxp\" on the PC.

    - Run the command "setup.exe -mng no -scf -crt R -updp C:\Sophos\CIDs\S000\savscfxp -s -ni" and Sophos gets installed on the PC.

    My question is that there should be a warehouse folder in the PC at the location C:\programdata\sophos\autoupdate\data\ folder which is missing.

    Should i copy the warehouse folder from the "\\secserver\warehouse" to the above location ?

     

    Thanks for giving time to my query.

  • +1 in reply to Kandarp Desai1

    The endpoint doesn't have a warehouse in this scenario.  SUM downloads a warehouse, from the warehouse the files are decoded into the CIDs/Distribution points.

    You are copying over the CIDs/Distribution to the client, not the warehouse.  AutoUpdate will pull the files down from the local computer and fill a local cache which it will install the products from.

    If you were putting a SUM on an air-gapped/isolated computer, you would move the Warehouse as SUM needs a warehouse. Detailed here: https://community.sophos.com/kb/en-us/64899 


  • 0 in reply to jak

    Great. I just tested this with EICAR and it is blocking it. 

    Thanks for your help !

Unfiltered HTML