This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Additional Sophos Enterprise Console for Isolated Network

Dear Community,

We have a working Sophos Enterprise Console what we are using for all our clients.


We have a new isolated network in production where we would like to install a secondary Sophos Enterprise Console to a bridge PC, this Bridge PC has two network adapter, one for the isolated the other one can reach the main Sophos Enterprise Console, here to this I installed SEC already as the official Sophos Guide told me, without database and management server, only the Sophos Enterprise Console.

I have a new Client what is isolated and can only reach this Bridge-PC, but when I install Antivirus and fill out username and password and for the Group I fill out the Bridge-PC's IP Address It will never show up in the Sophos Enterprise Console.

This is how it should work.

So how does the installed client knows where to connect to get the policies?
If I know the answer I can solve the issue.



This thread was automatically locked due to age.
  • Hello ManuelKöpper,

    there seems to be some confusion regarding what component does what.

    The Console is just an interface to Management Server, kind of remote viewer/control.
    What you need is a Message Relay and either a usable update location or a HTTP proxy on the Bridge-PC.

    Christian 

  • Hello, Yes looks like we missed this point. We does not want to use updates/antivirus in the isolated network, we only need centralized USB blocking, Message Relay is enough for this? Thank you!

  • Hello ManuelKöpper,

    didn't read your other thread (about Secondary SUM) earlier.

    Message Relay (if set up correctly) would enable you to block and generally or  selectively unblock USB but it's IMO a Gyro Gearloose (Daniel Düsentrieb) solution to some problem unknown to me.

    Christian
    I  could give a longer answer tomorrow