Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 2 subscribers
  • Views 4936 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

sophos firewall and imaging PCs

johnschoenstein

Hi,

 We have ~300 laptops running win7 with Sophos AV and firewall. I've run into an issue where the imaged PCs are not associating with the console. I followed article 12561. There is a run-once registry setting in the GPO that runs a script on the local machine to set the services to auto and start each service. I can reach the sophos server for updates, but firewall and AV polices are not downloaded. the computer appears in the console, but is grayed out and I can't tell it to push the policies. The default firewall policy as well as OU specific policy has 'allow all traffic' set

About our environment:

  • Images are made by DISM, software installed before imaging but not joined to a domain.
  • KB article 12561 has been followed
  • The Domain they are joined to has the Sophos AD integration enabled.
  • The OU where they are moved to does not have the 'automatically install Sophos' box checked.
  • The devices connect Via Netmotion and are behind a firewall.
  • Sophos version 10.3

the policy in the image includes a few trusted networks, but there are more in the policy. I figured it would be easier to include only the necessary ones in the image and they would get the policy from the server. It seems that's not the case, and the firewall is enabled instead of in pass-through mode. I have 60 imaged that cannot reach the network devices they need to, and 240 more to image. I need a fix that will work for both new and old. 

Thanks,

John



This thread was automatically locked due to age.
  • 0
    Hello John

    If the mentioned KB (12561) did not help I would suggest to follow the below article to just have Sophos Autoupdate included in the image. This way when the image comes online, the latest version of each component should be automatically downloaded and installed from the update location you configure.

    www.sophos.com/.../28591.aspx

    Based on the scenario you described, it seems that the endpoints are failing to either update or install Remote Management System which is responsible for communicating with the Console to get all the required policies.
Unfiltered HTML