We have a working Sophos Enterprise Console what we are using for all our clients.
We have a new isolated network in production where we would like to install a secondary Sophos Enterprise Console to a bridge PC, this Bridge PC has two network adapter, one for the isolated the other one can reach the main Sophos Enterprise Console, here to this I installed SEC already as the official Sophos Guide told me, without database and management server, only the Sophos Enterprise Console.
I have a new Client what is isolated and can only reach this Bridge-PC, but when I install Antivirus and fill out username and password and for the Group I fill out the Bridge-PC's IP Address It will never show up in the Sophos Enterprise Console.
This is how it should work.
So how does the installed client knows where to connect to get the policies?If I know the answer I can solve the issue.
there seems to be some confusion regarding what component does what.
The Console is just an interface to Management Server, kind of remote viewer/control.What you need is a Message Relay and either a usable update location or a HTTP proxy on the Bridge-PC.
Hello, Yes looks like we missed this point. We does not want to use updates/antivirus in the isolated network, we only need centralized USB blocking, Message Relay is enough for this? Thank you!
didn't read your other thread (about Secondary SUM) earlier.
Message Relay (if set up correctly) would enable you to block and generally or selectively unblock USB but it's IMO a Gyro Gearloose (Daniel Düsentrieb) solution to some problem unknown to me.
ChristianI could give a longer answer tomorrow