This article explains how to install Sophos Anti-Virus on to an OS X disk image (workstation clone) so that it can work with the console once the image is used on a new workstation.
Steps on re-initializing the Remote Management System (RMS) component are also provided if the initial installation was not done correctly.
Applies to the following Sophos product(s) and version(s)
Sophos Anti-Virus for Mac OS X
What To Do
- Set up the operating system to your requirements including all patches, etc. Sophos Anti-Virus is the last thing that you add to the image.
- Download the Sophos Anti-Virus.mpkg file from the Enterprise Console Central Installation Directory (CID) to the machine.
- Unplug the network cable (or disconnect the machine from the network).
- Install Sophos Anti-Virus.
- Take your image (without re-connecting to the network).
Because the machine was not connected to the network when Sophos Anti-Virus was installed, Remote Management System (RMS) did not managed to connect to the console and is therefore still in a fresh state. If you then turn these images into NetBoot images, or static images for the machine, the first time they connect to the network, RMS will contact the console.
How to reinitialize RMS
If the Macs have been imaged improperly, then it is possible for more than one endpoint to attempt to register with the Sophos Enterprise Console (SEC) with the same agent name. Follow the instructions below on the Mac endpoint to re-initialize RMS.
Open Terminal and enter the four commands below:
sudo launchctl unload /Library/LaunchDaemons/com.sophos.managementagent.plist /Library/LaunchDaemons/com.sophos.messagerouter.plist
sudo rm -f /Library/Caches/com.sophos.rms/agent.private
sudo rm -f /Library/Caches/com.sophos.rms/router.private
sudo launchctl load /Library/LaunchDaemons/com.sophos.messagerouter.plist /Library/LaunchDaemons/com.sophos.managementagent.plist