Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 1129 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Updating an old Sophos install

t4rdigrade

Hello,

I work for a small research institution. I just started, and there are a lot of things that need updating to bring them up to date here. One of them is Sophos. Currently sophos is installed locally on every machine, and they all reach out and update the virus definitions individually. I'd like to transition from that method to a server based method where it updates and they all leach virus definitions and settings from it.

I'm having a hard time finding documentation on the best practices and installation instructions in this regard. Where would I find these? What tips and tricks/settings should I use to make sure everything is running well and keeping the computers here safe?

Thanks for your help

:7449


This thread was automatically locked due to age.
  • 0

    Hi,

    I would suggest just running the latest server installer on the server you now have provisioned  for this role and once done you should be able to download the required packages and protect the server itself.  This will prove much of the system is functioning before you start protecting the existing clients.  I assume as it's "a small research institution" you don't have thousands of machines so a compact install where all roles are on the same server would be fine.

    At this point, you might want to import machines from AD to set-up a SEC group structure based on that or something you feel logically partitions the machines. IP range, OS, department, machine role, etc..  Best think where the polices might differ as the policies to groups are a 1-1 mapping.

    I would suggest then configuring the policies and linking them to the groups you have created ready for when you start protecting the existing machines.

    With regards to documentation:

    http://www.sophos.com/support/docs/Endpoint_Security_Data_Protection-all.html

    would be a good place to start but from what I can make out you're essentially doing a fresh install with a protect of the existing clients.

    Regards,

    Jak

    :7453
Unfiltered HTML