This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Re-Add devices without re-installing on endpoints?

Hi,

 

Our Sophos Enterprise Console has been quite neglected, and I'm looking to get things back on track.

It looks like the devices were all found via IP address, and most of them still live in the unassigned folder on the console.  Add to this the fact that a number of devices have been removed from the domain without being removed from the console (some haven't contacted the server in a year), and a device naming convention that doesn't easily allow me to prune manually, and I've got a big of a task ahead of me.

The devices that are connected have no issues, so what I'm hoping to do is delete all endpoints from the console, and then do an Active Directory import, so we get our devices in folders that follow our OU structure, and just the endpoints that are still active.

Assuming that I don't purge the database, if I import the devices back in to the console, will they carry on as normal?  Do I have to do anything to re-associate them with the console?  I'm hoping I don't need to re-install sophos on all of the endpoints - the server is remaining the same, just want to change the structure.

 

Will this work?  Has anyone had to do anything similar?

Thanks

Matty



This thread was automatically locked due to age.
  • Hi Matty,

    You can use PurgeDB to remove computers from Sophos Enterprise Console if they haven't reached back to it within a set amount of days that you specify: https://community.sophos.com/kb/en-us/109884

    In addition to this, any computers that have accidentally been deleted but are still active will auto-populate themselves back into the Enterprise Console as if they were never deleted.  This happens when the endpoints sends a message back to the Enterprise Console.   Because of this, a complete delete of all endpoints in the console and re-sync of Active Directory should not be an issue, just make sure your policies are properly applied to the correct OU/Groups.

  • That's great,

    we'll give that a go.  Thanks for your help.