Global Utilities

La Trobe University
Information and Communications Technology

Additional information for IT support staff

1. I want to install Sophos in a non-managed environment

If you do not plan on using Sophos Enterprise Console to manage computers within your Active Directory OU you can install Sophos normally.

The following is available in a non-managed environment:

  • Automatic update via Central Installation Directory (CID)
  • E-mail alerting available
  • End user notificatioin of update failure

2. I want to install Sophos in a managed environment?

If you plan to use Sophos Enterprise Console to manage computers within your Active Directory OU you MUST initially install and configure your own EM Library. Although it is possible to install the EM Library on a workstation (unsupported) it is highly recommended that it be installed on a computer running Windows 2000/2003 Server with the latest security updates.

The following is available in a managed environment:

  • Force updates on machines within your Active Directory OU by using the Enterprise Console
  • Real time status monitoring
  • Generation of customised reports on virus alerts, infections and protection status

3. What is the Sophos Management Server (EM Library)?

Sophos Management Server ensures total anti-virus protection across the network at all time by providing a fully automated process for updating Sophos Anti-Virus. The Management Server downloads the latest versions of Sophos Anti-Virus and virus IDE's at pre-set intervals ensuring that access to the latest IDE's are available.

4. What is the Remote Enterprise Console?

Sophos Remote Enterprise Console provides powerful, intuitive, scalable and enforceable policy-based management of Sophos Anti-Virus across desktops, file servers and even remote computers. The console enables centralised installation, configuration and monitoring, with management by exception, allowing administrators to deploy Sophos Anti-Virus remotely across an entire network from one central Windows machine in a single operation, without user intervention.

Remote Enterprise Console also allows Administrators to monitor the status of computers as well as generate customised reports on virus activity.

5. Why does Sophos Anti-Virus fail to work after I run SYSPREP?

SYSPREP is a common tool used in the disk duplication process in order to ensure that computers running the Windows operating system use a Security ID (SID) to uniquely identify themselves.

If Sophos Anti-Virus version 7 has been included as part of a disk image, the main Sophos Anti-Virus application will fail to execute once this SID value has changed. This is because Sophos Anti-Virus stores the original Security ID when the application was installed and can not be associated with multiple SID values.

To resolve this problem, on a computer where the SID value has been changed, open a command prompt and type the following two commands:

del "c:\Program Files\Sophos\Sophos Anti-Virus\cidsync.upd"

msiexec.exe /i "c:\Program Files\Sophos\AutoUpdate\cache\savxp\Sophos Anti-Virus.msi" REINSTALL=ALL REINSTALLMODE=voums UPDATEDRIVERS=0 /l*v c:\msi.log /qb

Alternatively, download this batch file and include it as a logon script within the disk image.