Enterprise Console - Update failure

Hello Glenn,

\\HA-SOPHOS\SophosUpdate, HASBS\administrator, 86

says that the password for HASBS\administrator is incorrect - these should be the credentials from the updating policy.

Christian 

Ok thanks for that, I had a discussion about this user account with someone else.

So its still able to push out the clients even if this password was incorrect?

So I ran the update manager updater as per http://www.sophos.com/en-us/support/knowledgebase/112598.aspx

It didn't seem to update on workstation so I removed the auto-updater and re-installed via the console and this time it has the updated username / password account.

Attached is log file ALUpdate from the problem workstation, it still seems to output same issue.

Regards,

Glenn

Hello Glenn,

its still able to push out the clients even if this password was incorrect

yes, it's able to push and the install will start but never complete. Please see How does the 'Protect computers wizard' perform an installation? Under 3.1. it says: Once complete it will then fetch the additional required packages by connecting to the Updating policy location. It's not obvious what this means so I'll try to rephrase the article with less technical detail but also  looking at the accounts involved.

• The credentials you enter in the Protect prompt are used to
• create the install task on the endpoint
• run the task on the endpoint
• access the install location from the endpoint
• install AutoUpdate

The installation (i.e. setup.exe) will create an updating policy pointing to the Primary CID (or Initial Install Location) and the credentials from the policy (not the ones from Protect) for Primary.  At this point only AutoUpdate is installed. As it will use the Policy's credentials download and thus installation of all other components will fail if these credentials are incorrect. It can't report this to the console though because the required RMS is not yet installed.

Christian

Ok well I'm a little lost here then, the account I've updated it with is correct I'm logged on to the VM with those very details which is a domain administrator account with full network access.

I can see the task scheduler is creating but it seems to fall over at this point.

On friday when I left it last after spending most of day on it the console was reporting this computer is not yet managed (0xfffffff) after doing the re-install update manager update I'm getting:-

The installation could not be started: The system cannot find the file specified. The computer may need additional configuration before installation. See KB Article 29287.

I got rid of that on Friday when I'd updated the domain policy to push out inbound firewall rules.

Regards,

Glenn

Hello Glenn,

please verify that you can access the CID (share) using the account from the policy (the other log you've posted has error 1326 which is more general invalid credentials). Perhaps this thread can give you some additional hint.

Christian

Well this was one of the issues I was investigating prior to this issue as I went through the pre-requisites and installation guide I double checked I could access this share.

From workstation I can map drive to it, view it in explorer with UNC path.  I set the share like the gentlemen in the post you linked

\\HA-SOPHOS\SophosUpdate\CIDs\S000\SAVSCFXP

This folder has group "Everyone" and "Authenticated Users" and even my specific user account I use on my workstation (the one having the problem) as I just went gun-ho with given share just because ya know how it is with permissions sometimes !

Thanks for the replies Christian.

Cheers,

Glenn

I'm going down the route of re-installing this from scratch as I took over the install from another person so hopefully knowing what I know now and all the troubleshooting I'm confident this will work flawlessly :smileyhappy:

Regards,

Glenn

No problem Sandy.

So I have done a fresh install, some things I noticed now I was the one doing the install was the 2 user accounts weren't used which are specified and also UAC wasn't turned off during install.

But I'd like to say hooray that it works and I nearly did but this time round its slightly different.  After install I did the computer discovery and then proceeded to install on my PC.

This looked like it did it swimmingly and when I came back to console I had a green mark next to the PC and the console is now reporting its managing 2 devices where before it never did this only mentioned the server was protected.

Then eventually it came back with a "Warning" under alerts and events tab, my sanity sank further but the error simply reported the computer needed a restart so I felt better thinking hooray but after restarting the PC it still reports the same error in consolse that the PC needs a restart.  Its been an emotional rollercoaster!

The current log file is attached, I noticed I have a new number next to Windows Error now as 53.  As you can see in the log file it still indicates to me an issue with the share.

The 2 user accounts (SophosManagement and SophosUpdateMgr) both have the same passwords and the user account I'm using to Protect the machines is a domain administrator account which has access to everything.

I just cannot for the life of me understand why it doesn't like to access this share!

Cheers,

Glenn

Here's my share setup