1.
Uninstall SophosRMS if it is installed if not continue to step 2.
a.
Go to Add Remove Programs and uinstall Sophos Remote Management System
b.
Go to C:\Program Files (x86)\Sophos\Remote Management System and Delete any files beginning with MRINIT.CONF.
a.
Copy the SUMInstallSet to the desktop of the Relay Server.
b.
Edit last line of mrinit.conf file. Example: "ParentRouterAddress"="servername.com,servername"
c.
Run Setup.exe from that directory.
i. When prompted for user
name choose Existing.
ii. Input Domain: domain
and UserName: sophosupdate
iii. Password: password
(your domain user password)
3.
When setup is complete enter REGEDIT, Verify.
a.
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432node\Sophos\Messaging System\Router—64bit
i. NotifyClientUpdate=Router$servername:number.Agent
ii. ParentAddress=192.168.0.10,fe80::e896:f4bc:13b4:651d,SERVERNAME.com,SERVERNAME
5.
Go to Enterprise Console View Update Managers
a.
Click Add beside Software
Subscriptions.
b.
Name it according to relay name. (5346FS01, CUTHMSFS1)
7.
Right click and select View/Edit Configuration.
a.
Click Add at bottom of screen and match the screen below for Sources Tab
click OK.
8.
Select the Subscription Tab move the Relay/Server (EX.CUTHMSFS1, SOPHOSRM2) you are working with into
the right column click OK.
9. On Enterprise Console Select the SERVERNAME update manager right click and select View/Edit Configuration. Click Subscriptions Tab move the Relay you are working with to the right as below then click OK.
10. From
the SERVERNAME server, map the Relay
server you are working with to the following location \\servername\SophosUpdate. Create
a folder called Warehouse in the
mapped location. Open folder to see if data is populating. If not right click
the Relay server in the Enterprise console and select update now.
a.
In the Enterprise Console wait for the Update Manger you are working
with to have a date associated with the Last Updated column then continue.
11. When
update has been completed Copy the Remover folder from
C:\ProgramData\Sophos\Update Manager\Update Manager\CIDs\S000\SAVSCFXP on the SERVERNAME server to \\servername\sophosupdate\CIDs\s00#\SAVSCFXP. (WORK FROM RELAY SERVER YOU ARE CREATING)
12. In
Enterprise Console Click Viewà Boot
Strap Locations
a. This will give you the
S number for the location. Example S001.
13. Copy
modified mrinit.conf from the SAVSCFXP folder to the location:
14. Finally
we need to do a configcid from elevate command prompt on the SOPHOSAV server for these 2 locations.
a.
Change directory to C:\ then enter the following
:
i. cd /d "C:\Program
Files (x86)\Sophos\Enterprise Console\SUM"
15. Open
IIS. Add new virtual directory to default website.
a.
Name it sophosupdate.
b.
Path name should be C:\ProgramData\Sophos\Update
Manager\Update Manager
c.
Select logging Icon under IIS.
i. Turn off logging
(select logging then click disable to the right)
d.
Select MIME Types ICOn under IIS.
i. Add MIME type
e.
Exit IIS Management console
16. In
Enterprise Console click View à Endpoints
view.
17. Duplicate
the Relay Policy already created.
a.
Go to policies Expand Updating right click on any policy and select
Duplicate Policy
b.
Change the name to the Relay/Server you are working with.
18. Right
click and View/edit the new policy. Change the name to the new RM server on
Primary and initial install tabs.
19. Apply
that policy to your desired groups.
20. On
the Relay server you are working with reinstall RMS.
a.
Go to the following path and run setup.exe from elevate command prompt :
i. In command prompt cd to
the path in 20ii.
ii. C:\ProgramData\Sophos\Update
Manager\Update Manager\CIDs\S0##\SAVSCFXP\rms
iii. Run from command prompt:
Sophos Remote Manager System.exe
21. Setup
Firewall Rules accordingly:
a.
Go to Control Panel Ã
Windows Firewall
b.
Click “Allow a program feature through Windows Firewall
c.
Click Add Program on the bottomà Click
Browse
d.
Go to C:\Program Files (x86)\Sophos\Remote Management System and select
RouterNT
e.
Click OK
f.
Click OK to Finish
No comments:
Post a Comment