This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Removed SEC server from domain, now update manager shows update failed

One of our clients has removed the SEC server which has all components installed, from the domain. Now the Update manager shows Software delivery failed.

Error is as follow  Error Sophos Update Manager failed to update from product release 'Payload-SDDM' with version 76.3 as the installer returned an error: 1603

I read the earlier posts and QC has mentioned to change some registry entry as follows but i am no longer in a domain so i'm not sure this applies.

"It can happen if the server is in a domain. The solution is the following registry key:{HKLM\Software\Microsoft\Windows\CurrentVersion\Uninstall\{2C7A82DB-69BC-4198-AC26-BB862F1BE4D0}. It should containYourServer;YourDomain;SophosUpdateMgr;0;0 - but sometimes the domain is missing or YourServer contains one of the DCs. Correct the values and force an update (and watch this key)"

What should i do now, can someone help me with this

 



This thread was automatically locked due to age.
  • Hello Kandarp Desai1,

    removed the SEC server which has all components installed, from the domain
    without consulting someone first? Guess this action is embraced by the first unsupported action listed in the Changing ... when the Enterprise Console is installed article. Is everything else working (as normally a domain change causes other issues as well)?

    For 64bit systems the key is on the Wow6432Node, if SophosUpdateMgr (or whatever name is used) is a local account the value should be YourServer;YourServer;.... If SophosUpdateMgr and SophosMgmtUser were a domain accounts ... there'll be other issues as well.

    Christian

  • Thanks for your reply Christian. Do you suggest we reinstall the SEC server as given in this article 

    community.sophos.com/.../119532

  • Hello Kandarp Desai1,

    never tried a domain name or membership change so I can't say what issues might or will arise if you try to continue to use the management server. Naturally an orderly installation is better than one that has been tinkered with. As the article says it's all but infeasible to keep/ restore the database so it's be an install from scratch. Re-using the certificates it should be doable to "rope in" the endpoints without reprotecting them.

    Christian