Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 2 answers
  • Subscribers 3 subscribers
  • Views 10512 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Download failed

Evaldas Pilkis

Hi,

We Sophos Endpoint Security and Control deployed on all our enterprise machines. 

Our primary update location on all our devices is configured to update through our Sophos server.

I would like to setup secondary location to be Sophos web facing servers (surprised this is not automatically configured). Currently when our devices are off the network for some time, they no longer get the latest updates, which is a security issue for us.

I've tried the following update links es-web-2.sophos.com and es-web.sophos.com links, but the updates do not download. The logs are filled with bellow messages.


Message: ERROR: Download of Sophos System Protection failed from server es-web-2.sophos.com/.../

 

 

 

  



This thread was automatically locked due to age.
Parents
  • 0

    Hello Evaldas Pilkis,

    surprised this is not automatically configured
    no surprise actually. An endpoint can't update the RMS component from a non-managed CID, i.e. a CID not deployed by your SUM/SEC server. Thus Sophos as update location (for on-premise, managed endpoints) is intended as a fallback only. Please note that sites with many endpoints that are off-network for a considerable time usually deploy a WebCID.

    I've tried the following update links es-web-2.sophos.com
    this is not how it works. While updating from Sophos is over HTTP it uses a mechanism different from the one for updating from a WebCID. In the Address drop-down on the Secondary Server tab of an updating policy there's the predefined Sophos address (it's on the Secondary tab only, not on the Primary), Username and Password are your license credentials.

    Christian     

Reply
  • 0

    Hello Evaldas Pilkis,

    surprised this is not automatically configured
    no surprise actually. An endpoint can't update the RMS component from a non-managed CID, i.e. a CID not deployed by your SUM/SEC server. Thus Sophos as update location (for on-premise, managed endpoints) is intended as a fallback only. Please note that sites with many endpoints that are off-network for a considerable time usually deploy a WebCID.

    I've tried the following update links es-web-2.sophos.com
    this is not how it works. While updating from Sophos is over HTTP it uses a mechanism different from the one for updating from a WebCID. In the Address drop-down on the Secondary Server tab of an updating policy there's the predefined Sophos address (it's on the Secondary tab only, not on the Primary), Username and Password are your license credentials.

    Christian     

Children
  • 0 in reply to QC

    Hi,

    Thanks for your reply.

     

    I have http://es-web-2.sophos.com URL configured as a secondary update server under our Updating policy. Username and password are valid license username and password. However, the test machine is getting the following errors when attempting to update.

     

    ERROR:   Could not find a source for updated packages

    Download of Sophos System Protection failed from server es-web-2.sophos.com/.../



    Thanks

  • 0 in reply to Evaldas Pilkis

    Hello Evaldas Pilkis,

    why do you use es-web-2.sophos.com? Using an explicit address prefixed with http AutoUpdate assumes this is a regular on-premise CID.
    As said, updating from Sophos uses a different mechanism, and the address has to be specified as just Sophos (Sophos is available in the Secondary's drop-down only), credentials are the license credentials.

    Christian

Unfiltered HTML