This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Laptop Users

Hi,

I wander if anyone can help me with this.

We currently have a Endpoint CMS setup at our main office and all of our Domain P.C's and servers are currently managed by this server.

We have about 100 laptops that we have installed Endpoint on as a stand alone install.

These laptops leave the office frequently and can be out for a while, while still having an internet connection at home or at another office.

Instead of having these laptops as standalone, i would like to manage them using the CMS server so that i can roll out new policies or upgrade the clients through this.

Does anyone know of the best way of doing this?

My initial thoughts we to install a DMZ CMS server which communicates to the main CMS server and the laptops then talk to the DMZ CMS server for management but then use the Sophos Update Servers as their primary update location.

Or is there a better way?

Thanks for your help

James

This thread was automatically locked due to age.

0 QC over 13 years ago

Hello James,
I assume CMS stands for Central Management Server which is usually called SEC?
In order to manage your off-site clients you'd have to set up a message relay as outlined in Using Sophos message relays in a public WAN. In a managed environment you can't set Sophos as the primary server. The reason is that only the SAV and, if applicable, SCF components will get updated - not RMS, the management component.
If the Primary server can't be contacted the clients will try the Secondary (that is what it's for) so this would do what you want. A better solution is a WebCID so that your clients can update from your site (and still have Sophos as Secondary). If you create this CID specifically for your off-site clients you can to a limited extent also change the configuration if needed.
Christian
:11705
Cancel
Vote Up 0 Vote Down

Cancel