Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 0 subscribers
  • Views 5802 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

New admin needs help with basics

ctavernier

I've got the Sophos Enterprise Console 5.2.1 R2.  The dashboard is showing me Managed, Unmanaged and Connected along with computers that differ from policy, out of date computers and computers with errors.

Should start with the Unmanaged computers?  Or should I Discover Computers to get a new unmanaged list?  

Does connected mean Managed computers that are connected at the moment?  Should I start here and clean up the errors?

On the computers that differ in policy, which policy should they comply with?  Data Control, Device Control, Tamper Protection and/or Web Control?

Under Unmanaged Computers, they're all greyed out but the Protect option is greyed out too.  How do I get them managed?

Under Connected Computers, if it has an error and I right-click and choose Resolve Alerts and Errors, why does nothing show up?

Under any of the categories, if I choose a computer or range of computers, is there supposed to be a progress bar when I click on Update Computers Now?

We've been using Sophos for a while now but we're not very organized as a tech department and the person who was the Sophos go-to person is no longer around.  

Thanks in advance.

:53467


This thread was automatically locked due to age.
Parents
  • 0

    Hello clavernier,

    my sympathy. Now, it's not rocket science but not explained in a few sentences. I'd suggest you start with reading the console help (or the Enterprise Console Help manual), especially the Guide to the Enterprise Console interface. Click your way through the various tabs - although it might be confusing at the first glance most of the display is self-explanatory: If you read the column headings there's one under the Status tab starting with Policy and under some of the other tabs there's one ending with policy. If you guess they are somehow related you're right :smileywink:

    Unmanaged 

    Typing this word in the Console Help gives Computers are not managed by the console as first hit. The page likely answer a lot of your questions.

    Connected

    You're correct about the meaning, except perhaps that it's not exactly at the moment. An endpoint connects when it logs on to the management server via RMS and disconnects when it's shut down orderly. Disruptions are not always immediately noticed though.

    differ in policy, which policy

    The tabs are your friends :smileyhappy:

    Protect option is greyed out too

    The answer is in Computers are not managed by the console

    if it has an error and I right-click and choose Resolve Alerts and Errors, why does nothing show up?

    The chapter Protecting computers is about working with endpoints (but even as your console has already been set up you shouldn't skip Setting up Enterprise Console). Clear endpoint alerts ... is part of the Dealing with alerts and errors subchapter. To quote:

    Note: You cannot clear alerts about installation errors. These are cleared only when Sophos Endpoint Security and Control is installed successfully on the computer.
    Installation errors encompass also updating errors.
     
    As you likely don't have to deal with a malware outbreak right now you should perhaps start with the list of endpoints. Delete those which no longer exist. Make sure that all your endpoints are protected. Whether you use Discover ... (and subsequent Protect) or another method to deploy depends on your environment. Please note that when an appropriate method or package is used to install Sophos on an endpoint it will contact the server and automagically appear in the console).
     
    is there supposed to be a progress bar when I click on Update Computers Now
    you probably think ... well, it works like this: Usually an endpoint is configured to check for updates at regular intervals (note: it's always the endpoint pulling). Update now simply instructs (via a message) an endpoint to immediately perform such a check. The messages are instantly queued for delivery but if the endpoint is not connected they might remain on the queue until they time out. Thus a progress bar wouldn't make much sense if at all. 
     
    HTH
    Christian   
    :53483
Reply
  • 0

    Hello clavernier,

    my sympathy. Now, it's not rocket science but not explained in a few sentences. I'd suggest you start with reading the console help (or the Enterprise Console Help manual), especially the Guide to the Enterprise Console interface. Click your way through the various tabs - although it might be confusing at the first glance most of the display is self-explanatory: If you read the column headings there's one under the Status tab starting with Policy and under some of the other tabs there's one ending with policy. If you guess they are somehow related you're right :smileywink:

    Unmanaged 

    Typing this word in the Console Help gives Computers are not managed by the console as first hit. The page likely answer a lot of your questions.

    Connected

    You're correct about the meaning, except perhaps that it's not exactly at the moment. An endpoint connects when it logs on to the management server via RMS and disconnects when it's shut down orderly. Disruptions are not always immediately noticed though.

    differ in policy, which policy

    The tabs are your friends :smileyhappy:

    Protect option is greyed out too

    The answer is in Computers are not managed by the console

    if it has an error and I right-click and choose Resolve Alerts and Errors, why does nothing show up?

    The chapter Protecting computers is about working with endpoints (but even as your console has already been set up you shouldn't skip Setting up Enterprise Console). Clear endpoint alerts ... is part of the Dealing with alerts and errors subchapter. To quote:

    Note: You cannot clear alerts about installation errors. These are cleared only when Sophos Endpoint Security and Control is installed successfully on the computer.
    Installation errors encompass also updating errors.
     
    As you likely don't have to deal with a malware outbreak right now you should perhaps start with the list of endpoints. Delete those which no longer exist. Make sure that all your endpoints are protected. Whether you use Discover ... (and subsequent Protect) or another method to deploy depends on your environment. Please note that when an appropriate method or package is used to install Sophos on an endpoint it will contact the server and automagically appear in the console).
     
    is there supposed to be a progress bar when I click on Update Computers Now
    you probably think ... well, it works like this: Usually an endpoint is configured to check for updates at regular intervals (note: it's always the endpoint pulling). Update now simply instructs (via a message) an endpoint to immediately perform such a check. The messages are instantly queued for delivery but if the endpoint is not connected they might remain on the queue until they time out. Thus a progress bar wouldn't make much sense if at all. 
     
    HTH
    Christian   
    :53483
Children
No Data
Unfiltered HTML