Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 4099 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Backup and restore SEC Settings

macoy

Hi Guys,

Just would want to know if someone already did a backup and restore of the whole SEC settings including the computers, computer groups, and policies? I'm planning to do a backup of my whole setup. Appreciate if anyone can pass me some procedure on how to do it.

Thanks!

:2307


This thread was automatically locked due to age.
Parents
  • 0

    I just would want to backup my existing sophos setup so that if there's something happen to my server

    Glad you ask - discussing these things is what a forum is (also) for.

    BackupDB simply backs up the (SOPHOS4 in this case) database. It contains (the breakdown is arbitrary and the description is neither meant to be accurate to the last details nor complete):

    • your groups, computers and their mappings
    • syncpoint data
    • your policies, their contents (=settings) and the group/policy and computer/policy mappings
    • events and alerts (including history)
    • roles and sub-estates
    • report configuration
    • SUM "metadata"
    • various SEC settings

    It does not contain 

    1. the database connection information
    2. certification manager registry keys
    3. RMS configuration
    4. software and downloaded data

    For the items in the not group it simply doesn't make much sense to have them in the database. 1 is obvious, 2 is perhaps arguable but right now the keys must exist or are created at an early stage during install, 3 is also obvious and 4 is not really necessary (as it is expected that downloaded data is regularly updated and as for the rest - well, you need something to start with).

    If I'm right you want some kind of "self-installing snapshot package" if there's something happen to [your] server.  What could that something be? If your server has "disappeared" (theft, major hardware failure, OS disaster) you'd first have to recover or reincarnate your server. As the Sophos software is readily available (unless you've also lost your license credentials - but they are only a call away) and a fresh install doesn't take long AND you'd also need the database (which might not be on the same server or share it's instance with another database) it'd be not of much help (if at all).

    Apart from the registry keys mentioned you should keep the details of the modifications you made (if any, but do not forget that if you were using WebCIDs you'd also have to configure the webserver) and perhaps the details for the accounts you used for updating (SophosUpdateMgr and whatever you use for your CIDs) and Roles and Sub-Estates - but this is not an absolute requirement. At least for me that is all I needed.

    If I misunderstood your question, please excuse.    

    Christian

    :2343
Reply
  • 0

    I just would want to backup my existing sophos setup so that if there's something happen to my server

    Glad you ask - discussing these things is what a forum is (also) for.

    BackupDB simply backs up the (SOPHOS4 in this case) database. It contains (the breakdown is arbitrary and the description is neither meant to be accurate to the last details nor complete):

    • your groups, computers and their mappings
    • syncpoint data
    • your policies, their contents (=settings) and the group/policy and computer/policy mappings
    • events and alerts (including history)
    • roles and sub-estates
    • report configuration
    • SUM "metadata"
    • various SEC settings

    It does not contain 

    1. the database connection information
    2. certification manager registry keys
    3. RMS configuration
    4. software and downloaded data

    For the items in the not group it simply doesn't make much sense to have them in the database. 1 is obvious, 2 is perhaps arguable but right now the keys must exist or are created at an early stage during install, 3 is also obvious and 4 is not really necessary (as it is expected that downloaded data is regularly updated and as for the rest - well, you need something to start with).

    If I'm right you want some kind of "self-installing snapshot package" if there's something happen to [your] server.  What could that something be? If your server has "disappeared" (theft, major hardware failure, OS disaster) you'd first have to recover or reincarnate your server. As the Sophos software is readily available (unless you've also lost your license credentials - but they are only a call away) and a fresh install doesn't take long AND you'd also need the database (which might not be on the same server or share it's instance with another database) it'd be not of much help (if at all).

    Apart from the registry keys mentioned you should keep the details of the modifications you made (if any, but do not forget that if you were using WebCIDs you'd also have to configure the webserver) and perhaps the details for the accounts you used for updating (SophosUpdateMgr and whatever you use for your CIDs) and Roles and Sub-Estates - but this is not an absolute requirement. At least for me that is all I needed.

    If I misunderstood your question, please excuse.    

    Christian

    :2343
Children
No Data
Unfiltered HTML