Enterprise Console: using ExportConfig.exe to create XML configuration files
The command-line utility ExportConfig.exe enables you to retrieve updating and anti-virus policies from Enterprise Console and save them as XML configuration files. These XML configuration files can be used to centrally configure unmanaged computers, or to implement features not available from the console. ExportConfig.exe is available in the TOOLS folder on the Sophos
Note: There are different versions of ExportConfig for Enterprise Console version 3, and Enterprise Console version 2. Version 2 is due for retirement, and Sophos recommends that you upgrade to the latest version.
You must place ExportConfig.exe in your Enterprise Console folder, C:\Program Files\Sophos\Enterprise Console (assuming that you installed Enterprise Console in the Program Files folder of your C: drive), because ExportConfig.exe depends on files that are part of Enterprise Console.
What to do
NOTE: the policy name is case sensitive, ensure that it is typed correctly.
- Using Windows Explorer, copy ExportConfig.exe to C:\Program Files\Sophos\Enterprise Console.
- Check that you are logged on as a member of the Sophos Console Administrators group. (By default, the user who installed Enterprise Console is in this group.)
Enterprise Console version 3
When you run the utility:
- Specify the type of policy you want to retrieve:
- The updating policy is indicated by the parameter '-type AU'
- The anti-virus and HIPS policy is indicated by the parameter '-type SAV'
- The application control policy is indicated by the parameter '-type SAC'.
- By default, you export your default policy. To retrieve a named policy use the '-policy' parameter, followed by the policy name. (Do not use this parameter for a default policy.)
- Also specify the location of the XML file to save the policy in. Use the '-output' parameter followed by the location and filename.
- The updating policy file should be called 'sauconf.xml'
- The anti-virus and HIPS policy file should be called 'savconf.xml'
- The application control policy file should be called 'savconfappc.xml' .
Examples:exportconfig -type AU -policy "A Policy" -output c:\temp\sauconf.xml
exportconfig -type SAV -output c:\temp\savconf.xml
exportconfig -type SAC -policy "Another Policy" -output c:\savconfappc.xml
The above lines will export a named updating policy called 'A Policy', the default anti-virus policy, and an application control policy called 'Another Policy'.
If your policy name has a space in it, you must enclose it in inverted commas. For example, if your policy name is 'A Policy', you must use"A Policy".
When you have generated the XML files, place them in the Central Installation Directories (CIDs) for the appropriate operating system(s). The default folders where you should place the XML files are:
For Windows 2000/XP/2003/Vista computers
- Put savconf.xml in: \\SERVER\InterChk\ESXP\savxp
- Put sauconf.xml in: \\SERVER\InterChk\ESXP\sau\
- Put savconfappc.xml in: \\SERVER\InterChk\ESXP\savxp
or, if you are using Sophos Client Firewall:
- Put savconf.xml in: \\SERVER\InterChk\SAVSCFXP\savxp
- Put sauconf.xml in: \\SERVER\InterChk\SAVSCFXP\sau\
- Put savconfappc.xml in: \\SERVER\InterChk\SAVSCFXP\savxp
For Windows NT4 computers
- Put savconf.xml in: \\SERVER\InterChk\ESNT\sav
- Put sauconf.xml in: \\SERVER\InterChk\ESNT\sau\
For Windows 95/98/Me computers
- Put savconf.xml in: \\SERVER\InterChk\ES9X\sav9x
- Put sauconf.xml in: \\SERVER\InterChk\ES9X\sau\
Now you must use ConfigCID.exe to ensure that networked computers update with the new configuration.
Enterprise Console version 2
When you run the utility:
- Specify the type of policy you want to retrieve:
- The updating policy is indicated by the parameter '-type AU'
- The anti-virus policy is indicated by the parameter '-type SAV'.
- By default, you export your default policy. To retrieve a named policy use the '-policy' parameter, followed by the policy name. (Do not use this parameter for a default policy.)
- Also specify the location of the XML file to save the policy in. Use the '-output' parameter followed by the location and filename.
- The updating policy file should be called 'sauconf.xml'
- The anti-virus policy file should be called 'savconf.xml'.
Examples:exportconfig -type AU -policy "A Policy" -output c:\temp\sauconf.xml
exportconfig -type SAV -output c:\temp\savconf.xml
The above lines will export a named updating policy called 'A Policy' and the default anti-virus policy.
If your policy name has a space in it, you must enclose it in inverted commas. For example, if your policy name is 'A Policy', you must use"A Policy".
When you have generated the XML files, place them in the Central Installation Directories (CIDs) for the appropriate operating system(s). The default folders where you should place the XML files are:
For Windows 2000/XP/2003/Vista computers
- Put savconf.xml in: \\SERVER\InterChk\ESXP\savxp
- Put sauconf.xml in: \\SERVER\InterChk\ESXP\sau\
or, if you are using Sophos Client Firewall:
- Put savconf.xml in: \\SERVER\InterChk\SAVSCFXP\savxp
- Put sauconf.xml in: \\SERVER\InterChk\SAVSCFXP\sau\
For Windows NT4 computers
- Put savconf.xml in: \\SERVER\InterChk\ESNT\sav
- Put sauconf.xml in: \\SERVER\InterChk\ESNT\sau\
For Windows 95/98/Me computers
- Put savconf.xml in: \\SERVER\InterChk\ES9X\sav9x
- Put sauconf.xml in: \\SERVER\InterChk\ES9X\sau\
Now you must use ConfigCID.exe to ensure that networked computers update with the new configuration.
If you need more information or guidance, then please contact technical support.
- Article ID: 13111
- Created: 23 May 2005
- Last updated: 5 Aug 2008
