How do you do....it? Thread, Sophos Enterprise Console in Technical; Ive recently started a process of checking through the antivirus on all our domain computers within the school. We use ...
1. ## Sophos Enterprise Console

Ive recently started a process of checking through the antivirus on all our domain computers within the school.

We use Sophos Enterprise manager on our server to synchronise groups with the AD and to automatically protect the machines. Unfortunately though some machines just refuse to automatically protect through the console.

I read around a bit online and the general consens seems to point me at the bootstrap installers? Ive had a play with this and arent getting much joy.

Does anyone have any tips and tricks on how to get this to work?

2. Our LEA offers this as advice:

Setting up Standalone Install Share

2) Extract the contents into a shared software distribution folder a network server.
3) Create a Group Policy with the following script in a batch file (Replace SERVER and to represent your server name):

Code:
REM @echo OFF

REM --- Check for an existing installation of Sophos AutoUpdate

if exist "C:\Program Files\Sophos\AutoUpdate\ALsvc.exe" goto _End

if exist "C:\Program Files (x86)\Sophos\AutoUpdate\ALsvc.exe" goto _End

REM --- Deploy to Windows

\\SERVER\Path\to\Share\SAVinstall\Setup.exe -mng no -ni -s -crt R

REM --- End of the script

:_End
4) Link the Group Policy to the highest OU containing computer accounts
Don't know if that would help or not.

3. I use the following to start the initial Sophos installation, as the enterprise console can't automatically protect my machines. Once installed they update and report correctly though.

\\Servername\SophosUpdate\CIDs\S000\SAVSCFXP\setup .exe -updp "\\Servername\SophosUpdate\CIDs\S000\SAVSCFXP" -user "Administrator" -pwd "MyPa55w0rd" -mng yes -s -ni

4. Originally Posted by Mr.Ben
I use the following to start the initial Sophos installation, as the enterprise console can't automatically protect my machines. Once installed they update and report correctly though.

\\Servername\SophosUpdate\CIDs\S000\SAVSCFXP\setup .exe -updp "\\Servername\SophosUpdate\CIDs\S000\SAVSCFXP" -user "Administrator" -pwd "MyPa55w0rd" -mng yes -s -ni
I used to do the same, worked pretty well!

5. Are you having a problem with Vista or 7? If so have you had a look at How to configure a GPO to ensure that you can protect and manage computers with endpoint software I've found XP to be okay with auto-protecting but Vista and 7 a PITA

6. Originally Posted by Mr.Ben
I use the following to start the initial Sophos installation, as the enterprise console can't automatically protect my machines. Once installed they update and report correctly though.

\\Servername\SophosUpdate\CIDs\S000\SAVSCFXP\setup .exe -updp "\\Servername\SophosUpdate\CIDs\S000\SAVSCFXP" -user "Administrator" -pwd "MyPa55w0rd" -mng yes -s -ni

Its XP,

That looks like the best option. Just found the command after the first post.

Ill give that a go thanks!

7. With 7, I have to enable Remote Registry in the Services MMC for auto installation to work - with that done, auto installation etc works perfectly.

SHARE:

There are currently 1 users browsing this thread. (0 members and 1 guests)

#### Posting Permissions

• You may not post new threads
• You may not post replies
• You may not post attachments
• You may not edit your posts
•