Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 6044 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos End point client to be redirected to other console

Hariharan Chandrasekaran

Hello Folks

 

I just needed a clarification before proceeding ahead.

We are having 2 Data Center  A & B. We have an Sophos Enterprise Console in each of the data center.

 

We are planning to move 2 Win 2003 servers which are reporting to Data Center A Enterprise Console to Data Center B console. To carry out this I feel there is no need to uninstall the existing AV present on client. 

 

If we just make changes on those 2 clients following location 

 

C:/Programfiles/Sophos/RMS/

 

Mrinit.conf and change the MR Parent address and Parent router address to NEW CONSOLE IP and Hostname and save it. 

 

Will this be enough for these 2 clients to show up in other console ? Kindly confirm the activity or any changes more needed in this place.

 

Regards

Hari

 

 



This thread was automatically locked due to age.
  • 0

    It's more than just the file mrinit.conf and cac.pem on disk.

    When you install SEC, the install creates customer files to your environment: cac.pem and mrinit.conf.  These are, among other places placed in the CID/Distribution point such that when you install the client, i.e. run setup.exe.  These files are copied, by setup.exe to the location under Programfiles you mention.  As part of the RMS installation a exe called clientmrinit.exe is run which reads these files and puts the data into the registry.  The config used by the processes at runtime is only read from the registry, this is until RMS is updated, at which time the clientmrint.exe is re-run, the files from disk are read again, etc..  So it's not enough to just update the files.

    For this reason the following exists:
    https://community.sophos.com/kb/en-us/116737

    This is a HTA which takes in some config and spits out a VBScript.  This script essentially removes the registry keys of interest and runs clientmrinit.exe against the new config files.

    If you want to re-point a client at a different SEC without re-running setup.exe this should do it.

    Regards,

    Jak

Unfiltered HTML