02 December 2010

Sophos Software Update Manager reading the log

The Sophos SUM has got many improvements over the old EM Library.  One of the only problems I still have with it is that it is hard to figure out what it is doing and what is going on.

This is especially true when you have a new installation and you are doing the initial software download, the enterprise console tell you Downloading Binaries, but how do you know if it is actually "going"

There is a log viewer.  For some reason it is not easily accessible. The logviewer.exe is located in the following directory

C:\Program Files (x86)\Sophos\Enterprise Console\SUM\Logviewer.exe

At the top of the log viewer there are two filters.  The first one "in red" is the severity filter.  This is handy to only display errors.
The filter options are:

  • All
  • Success
  • Information
  • Warning
  • Error

The second Filter sets the logging level - or level of detail.  Importantly this does not change the log itself, just the display of the log. The filter option are

  • Verbose
  • Normal
  • Important

To check that your download is actually happening all you have to do is change the logging level form normal to verbose.  This will then give you far more detail, and hitting the refresh button you can see the activity (auto refresh would be nice Sophos.)

This is currently displaying all the individual files being downloaded to the Warehouse.

If you want to know more about the size of the individual files you can browse to the folder directly and see how they are coming in and how big they are.  The folder is:

C:\ProgramData\Sophos\Update Manager\Update Manager\Warehouse

You can now correlate the items for the log viewer to actual files on the machine.

Once the warehouse is update with all the files it needs, depending on the Software Subscription, the files will then be compiled into the CID.  This is what can then be used to protect the client machines.

C:\ProgramData\Sophos\Update Manager\Update Manager\CIDs

By the time everything has finished the status in the Enterprise console will change from "Downloading Binaries to "Last checked at:"

1 comment:

Unknown said...

Brilliant, Helped me out to see it was actually Doing something ...Information is key to not making a mistake :P

Post a Comment