You have recently upgraded Enterprise Console version 4 to version 4.5 and you use our 'Synchronize with Active Directory' settings to automatically protect new computers when they join the domain.
When Endpoint Security and Control is automatically deployed to these computers, one of two things may happen:
- Endpoint Security and Control fails to install
- The client computers cannot communicate with the network
Known to apply to the following Sophos product and version
Networks that have been upgraded to
Sophos Endpoint Security and Control 9.5
Due to a known issue with the Active Directory synchronization feature, the settings applied to your endpoint computer on installation are incorrect. Either:
Installation fails. This occurs because the third-party removal tool has not been run on the endpoint computer.
The computer cannot connect to the network. This occurs because the Endpoint Security and Control firewall has been deployed to the endpoint computer in error. The computer has had the default firewall policy deployed to it, which blocks all network communications.
What to do
If installation has failed, run the Protect New Computers wizard on the computer to ensure the correct options are selected.
If the firewall component has been installed in error, edit the firewall policy to allow all traffic and apply it to the affected computers. This will allow the computers to access the network until you can remove the firewall using Add/Remove Programs at your convenience.
If you require more information about how to edit the firewall policy, please see the Enterprise Console help.
This issue was fixed in Enterprise Console 4.7.