How to install Sophos Central Endpoint on a gold image avoiding duplicate identities

  • Article ID: 120560
  • Rating:
  • 11 customers rated this article 4.0 out of 6
  • Updated: 14 Apr 2016

When using virtual machines that run on a virtualisation server, it is possible to run several instances of the same virtual machine from an original ‘gold image’. Because the identity is normally set at the time of the software installation, when multiple instances of the gold image are run at the same time, being exact replicas, they all attempt to use the same identity.

It follows from this that if the Sophos Central Endpoint software is installed onto the original gold image, all the virtual machines created from that gold image will have the same identity in the Central Admin console.

This article describes how to install Sophos Central Endpoint software on a gold image, so that every instance of a virtual machine run from that single gold image gets its own unique identity. This allows it to be managed correctly from the Sophos Central.

Applies to the following Sophos product(s) and version(s)

Sophos Cloud Managed Endpoint

What To Do

In order to run Sophos Central Endpoint on gold images, you must force the MCS component to re-register with the Central servers so that a new ID is assigned. This must be done when the new instance of the gold image is started for the first time.

  1. Stop the Sophos MCS Client service.
  2. Go to:
    • Windows Vista and above:
      C:\Programdata\Sophos\Management Communications System\Endpoint\Persist\
    • Windows XP:
      %ALLUSERSPROFILE%\Application Data\Sophos\Management Communications System\Endpoint\Persist\
  3. Delete the files:
    1. Credentials
    2. EndpointIdentity.txt
    3. All files with '.xml' extensions
  4. Go to:
    • Windows Vista and above:
    • Windows XP:
      C:\Documents and Settings\All Users\Application Data\Sophos\AutoUpdate\data\
  5. Delete the file ‘machine_ID.txt
  6. Obtain the MCS Token:
    1. Open the file: %temp%\Sophos MCS Install Log.txt
    2. Search for:
      Property(S): TOKEN =
    3. Which will show a long alphanumeric string, make a note of this token code.
  7. Go to:
    • Windows Vista and above:
      C:\Programdata\Sophos\Management Communications System\Endpoint\Config\
    • Windows XP:
      %ALLUSERSPROFILE%\Application Data\Sophos\Management Communications System\Endpoint\Config\
  8. Create a new text file called registration.txt
  9. The file must contain the following:
  10. Save the file

Important note: When the Sophos MCS Client service is started it will register with the Sophos Central servers and obtain a unique ID. We suggest you now shutdown the machine and take the gold image from this point. When the machine next starts the Sophos services will start with it and will therefore obtain a new ID.

If you need more information or guidance, then please contact technical support.

Rate this article

Very poor Excellent