Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 1 subscriber
  • Views 1610 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

"Differs from policy" each time the PCs being rebooted

kuzess

I have quite a lot of PCs, after the PCs being rebooted, the Sophos Enterprice Console 4 will given alert "Differs from policy".

the Console will not push the policy that given alert "Differs from policy". I have to manually "comply"  the policy.

I not so sure does this wierd things happen to me only or it happen to other people as well.

Is it ture that Sophos Enterprice Console will not push the policy automatically to any PCs that have "Differs from policy"?

Becasue I alway get the critical level for the "Computer that differ from group policy" and normally I can't push the policy to the PCs becasue the alerts send to Console might more than 1 hours and the PCs might be on sleep mode or being shutdown.

Any ways to solve my wierd issue?

:3514


This thread was automatically locked due to age.
  • 0

    Maybe a week ago I got every online computer shown as not up to date; it was cleared a day later or so (probably a component update from Sophos, and may or may not be related to this problem).

    Now, in 'Managed computers thad differ from policy', I am seeing a subset of computers as 'comparison failure' (they also get reported as up to date unknown, on access inactive, and looking by icon, offline; probably powered off; they do not respond to ping).

    Other subset of ofline/powered off computers get reported as Awaiting policy transfer, and up-to-date as not since (since last getting reported).

    For some of those (that I found online, and didn't thin I had to investigate differences) I asked to comply to policies, and at least for some of them message about differing from policy didn't get away yet.

    Any idea about reasons and scenario on 'comparison failure' (I intend to investigate myself, too).

    Regards, Marjan

    :3515
  • 0

    For which managed component does it report differs from policy?  The state on the first tab reflects all the managed components, such that if 1 is different then it will show differs.  If you toggle the other tabs is it: FW, AV, Data Control, Device Control, etc..?

    I would suggest following the following article:

    http://www.sophos.com/support/knowledgebase/article/30496.html

    to understand the reason.  If you can narrow it down to a component and setting that would help.

    Thanks,

    Jak

    :3574
  • 0

    Hi Jak,

    Normally for the most of the PC have the "Differs from policy" is from the "Anti-virus abd HIPS policy"

    the OS that have the issue is from Windows XP, Windows Vista to Windows 7.

    Is it any permissions or Windows Services that casue the issue?

    We do apply group policy to domain PCs.

    :4140
  • 0

    Just for your information.

    This morning I had 249 PCs that have error of "Differs from policy" for "Connected" Computers.

    :4249
Unfiltered HTML