Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 0 subscribers
  • Views 6982 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SEC 5.2.2 reusing old computer names

AlanO

Hello,

I have recently been passed the management and administration of SEC and would like some insight on how to approach the following issue:

We often reuse old computer names for new computers on the domain. E.g. when an employee leaves the company his/her computer is de-provisioned and the computer name (e.g. PC1) becomes available in the "pool". If a new employee is hired and there are computer names available in the pool, one of the old ones will be assigned to the new computer (e.g. the former PC1). From what I've seen so far, SEC registers the new computer as being the same one from before and therefore will assign all past events to the new PC1. I would like to ensure that once the computer is de-provisioned and computer name released, Sophos purges all entries regarding that computer from the database.

What is the best way to approach this?



This thread was automatically locked due to age.
  • 0

    Hello AlanO,

    the recommended tool is PurgeDB.exe, but it's not ideal for purging a single specific computer. Direct writes to the database are not recommended and unsupported, the following SQL command (use at your own risk) will purge a specific computer and its associated entries from the database though:
      DELETE FROM ComputersAndDeletedComputers WHERE Name='xxxxxxxx' AND Deleted=1 
    (AND Deleted=1 is a precaution, it will purge a computer only when it has been deleted from the console).

    Christian

Unfiltered HTML