/build/static/layout/Breadcrumb_cap_w.png

KACE & Sophos Anti-Virus. Any known issues?

We're about to deploy Sophos clients out to 4,000+ machines throughout our company. Since I haven't had anything to do with the server/config setup, if there is anything that we should be concerned about that will prevent the client from working with the KBOX?


0 Comments   [ + ] Show comments

Answers (3)

Posted by: jknox 11 years ago
Red Belt
4

There's a bug in the 5.3 agent that causes the agent not to restart properly on XP machines.  I haven't been able to duplicate it, but it happened on a machine that had Sophos on it.  It's something that should be fixed in 5.4. 

As far as I can tell, it's only a cosmetic error. It doesn't do any damage.


Comments:
  • Is the the ampagent.exe error on shutdown? - dugullett 11 years ago
    • That's when it's been reported with Sophos. The bug doesn't specify when it happens, only that the agent doesn't restart properly. - jknox 11 years ago
  • So what do you mean cosmetic error? What will it do differently that I'll notice? - sfigg 11 years ago
    • Perhaps bad wording. It will show an error, but once the computer is restarted, there is no effect past that. - jknox 11 years ago
  • This is only one time - after install? - sfigg 11 years ago
    • For at least one instance, it's occasionally on shutdown. I haven't been able to replicate it, so I'm not sure. - jknox 11 years ago
Posted by: ms01ak 11 years ago
10th Degree Black Belt
2

I suggest checking the Sophos logs before deploying Sophos everywhere. I found that our McAfee antivirus was preventing watchdog.exe (part of the old kace agent) from running on Windows XP machine, it was a simple change but it took production down on machines that were loggining. I'd also suggest making exceptions for the kace agent process (ampagent), the Dell/kace directories in program files, documents and settings and programdata before you deploy sophos.

 

 


Comments:
  • Thanks for the ideas - very valid concerns - having my network team look into adding excepts now :) - sfigg 11 years ago
  • Good suggestion, could be related to my comment about the agent. - jknox 11 years ago
Posted by: Roonerspism 11 years ago
Second Degree Brown Belt
1

Paranoia is your friend in this case. Which is something we've opted for in our sophos and kace environment. Got it on about 2000 machines. 

What we did was ensure that hips and file scans excluded all kace folders, ie the appdata\dell\kace and program files directories also.

And also, you know, small batch testing would be a good way to go too... just saying...

Also the kusrinit files in sys32 are now exceptions also.

Cheers,

Col

Don't be a Stranger!

Sign up today to participate, stay informed, earn points and establish a reputation for yourself!

Sign up! or login

View more:

Share

 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ