Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 2500 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Ummmmh.... have I installed this incorrectly?

Louis-M

We have SEC installed on a lan that has about 600 users. That's fine and all is working with 1 server.

However, we would like to update laptops that are away from the domain and have them report back to us as well if they are away from the domain for a long period but being used.

We'd also to be able to update the policies so they take effect on those clients when they are away and being used.

We have DMZ's in place so I'm thinking that we should have an update server in there so that external clients can update and have their policies updated.

I don't wan to put our current server in there as I would prefer our lan clients to update from a lan server but I would like the external clients to update from our DMZ so that policies are applied as well as have reporting features updated etc

Is there an easy way to go about this?



This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Bohdan.S

    Hi, it mentions in there about having Sophos as the secondary server. We have this and clients do get updates.

    But we've noticed the initial install does not go well unless it's done on premise. Once RMS is selected (in the packager to allow the endpoint to be controlled by the console), no matter what you enter in the update settings, the client will get it's update from the RMS server. Being external, it won't get to this (due to it being internal and firewalled) on the initial install.

    I'm taking a  test laptop back to work today where I suspect it will finish the rest of the setup. I will then take it back home to see what the effect is and then apply a policy to it.

    What I want to see is:

    1. Policy update on the laptop when it is remote

    2. Reporting that the laptop is updating and can be seen

  • +1 in reply to Louis-M

    You are correct, the policy server needs to be contactable. Which would mean exposing it externally, or using a VPN.

    Regards,
    Bohdan

Unfiltered HTML