When you install Sophos in a vDisk, the ID of the client will be the same for all your provisioning servers. Only one of the servers will appear in the Sophos Enterprise Console. The following guide will help you change the ID at startup and make sure all your server are managed.
Fist, put the vDisk in private mode. Install Sophos from the Enterprise Console and push it to your server. Log in the the Endpoint/Citrix Server. Stop the following services and change them to manual.
Sophos AutoUpdate Service
Sophos Message Router
Remove all values in the following registry keys:
HKEY_LOCAL_MACHINE\Software\Sophos\Remote Management System\ManagementAgent\Private\pkc
HKEY_LOCAL_MACHINE\Software\Sophos\Remote Management System\ManagementAgent\Private\pkp
Delete the following files:
De machine_id.txt holds the unique computer ID. Deleting the status.xml makes sure the endpoint will be updated when the services start again.
Close the vDisk and put it back into standard mode.
Make a startup script and let it run at boot. This can be through a GPO for example.
Use the following code:
REM Start Sophos
echo 36edb108-f39d-4a36-8bbd-99bddc%COMPUTERNAME% > "C:\programdata\Sophos\AutoUpdate\data\machine_ID.txt"
NET START "Sophos Agent"
NET START "Sophos AutoUpdate Service"
NET START "Sophos Message Router"
the echo wil create a new machine ID with the computername in it. So it will be unique. My example make use of a computername of 6 characters. If you use a longer name, just trim characters at the end accordingly. If you have shorter names, add a random character before %COMPUTERNAME%. Boot all servers and move them in de Sophos Enterprise Console to the correct folder.
If you’re searching for other anti-virus solutions check the following posts: