Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 1 reply
  • Answers 1 answer
  • Subscribers 0 subscribers
  • Views 6229 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Awaiting policy transfer - OSX 10.10

sodos

Hello there.

I have numerous Mac's running with Sophos AV. i have one 10.10.5 where the Sophos client (version 9.2.8, engine 3.60.0) but in the Enterprise Console it is still waiting to transfer the policy. But the policy is present on the MacBook Pro ! The MacBook Pro updates.

  • It seems like there is a lack of something to the Sophos Enterprise Console to the client.
  • In OSX are there command-line commands(in terminal) that can solve this
  • Are there command-line commands that can eg. check if port 8192, 8193 and 8184 or open ? The Firewall on OSX is not enabled.


This thread was automatically locked due to age.
Parents
  • 0

    Hello sodos,


    this is not necessarily a big issue. Awaiting policy transfer (you didn't say which policy) means that the management server has sent a policy (either because it has been changed or the endpoint has been moved to a group with a different policy) and the endpoint has not (yet) applied and acknowledged it. The management service passes the policy to RMS which sends (or tries to) send the policy immediately. If this is not possible the command is enqueued (with a time to live) to be sent at the next opportunity. If the TTL expires the status remains Awaiting.  Right-clicking (in the console) the computer (or group) and selecting Comply with and the applicable policy causes the command to be resent. Eventually the endpoint should comply.
    This status might simply indicate a lost command (or its response), an explicit Comply with or a subsequent policy change will resolve it. If it takes several minutes or more for the endpoint to comply this suggests that it's not possible for the server to connect to the the endpoint's port 8194.

    Christian

Reply
  • 0

    Hello sodos,


    this is not necessarily a big issue. Awaiting policy transfer (you didn't say which policy) means that the management server has sent a policy (either because it has been changed or the endpoint has been moved to a group with a different policy) and the endpoint has not (yet) applied and acknowledged it. The management service passes the policy to RMS which sends (or tries to) send the policy immediately. If this is not possible the command is enqueued (with a time to live) to be sent at the next opportunity. If the TTL expires the status remains Awaiting.  Right-clicking (in the console) the computer (or group) and selecting Comply with and the applicable policy causes the command to be resent. Eventually the endpoint should comply.
    This status might simply indicate a lost command (or its response), an explicit Comply with or a subsequent policy change will resolve it. If it takes several minutes or more for the endpoint to comply this suggests that it's not possible for the server to connect to the the endpoint's port 8194.

    Christian

Children
No Data
Unfiltered HTML