Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Managing remote OfficeScan client machines that never connect to the local network

    • Updated:
    • 2 Nov 2016
    • Product/Version:
    • OfficeScan 10.6
    • Platform:
    • Windows 2003 Compute Cluster Server
    • Windows 2003 Datacenter Server
    • Windows 2003 Datacenter Server Edition 64-bit
    • Windows 2003 Enterprise Server
    • Windows 2003 Standard Server Edition
    • Windows 2003 Standard Server Edition 64-bit
    • Windows 2003 Storage Server
    • Windows 2003 Web Server Edition
    • Windows 2008 Datacenter Server
    • Windows 2008 Datacenter Server Edition 64-bit
    • Windows 2008 Enterprise Server
    • Windows 2008 Enterprise Server Edition 64-bit
    • Windows 2008 Standard Server Edition
    • Windows 2008 Standard Server Edition 64-bit
    • Windows 2008 Storage Server
    • Windows 2008 Web Server Edition
    • Windows 2008 Web Server Edition 64-bit
    • Windows 7 32-bit
    • Windows 7 64-bit
    • Windows Vista 32-bit
    • Windows Vista 64-bit
    • Windows XP Professional
    • Windows XP Professional 64-bit
Summary

There are instances when customer's laptops remain offline from the network right from the moment they were issued. The administrator cannot count on that user connecting via VPN so he needs a workaround where any OfficeScan configuration will be reflected in the OfficeScan client.

The goal is for the OfficeScan client to obtain any changes made on the OfficeScan server such as:

  • Whitelist URLs
  • Exclusions
  • Configuration changes
  • Hot Fix and program updates

The remote machines were installed using a Client Package made by the OfficeScan server. The package then already contains the settings which allows the machines to update directly from Trend Micro's ActiveUpdate servers but these remote OfficeScan clients need a way to report to the OfficeScan server.

Details
Public

To manage the remote OfficeScan clients, you need to supply the OfficeScan server with an FQDN that is listed on both public and private networks. Remote machines will then be able to poll the OfficeScan server and gather configuration updates. The configuration changes will not be real-time, but when the OfficeScan clients poll the server.

The OfficeScan server will not notify the off-network OfficeScan clients in real-time about the configuration changes. We have to rely on the OfficeScan clients polling the server for updates and configuration changes.

 
The OfficeScan client systems may appear as offline in the console, but they will still pull down the updates.
  1. Set up the OfficeScan server with a private and public FQDN during installation.
  2. Open the web port used for communication from the OfficeScan clients to the OfficeScan server on the Firewall. For example, port 8080.
  3. Configure the following so that the OfficeScan clients poll the OfficeScan server for updates:
    1. Log in to the OfficeScan server console.
    2. Go to Networked Computers > Client Management.
    3. Select Settings > Privileges and Other Settings.
    4. Under the Other Settingstab, make sure to enable the following options:
      • Clients can download updates from the Trend Micro ActiveUpdate Server
      • Enable scheduled update
    5. Click Apply to all clients.
    6. Go to Updates > Networked Computers > Automatic Update.
    7. You may want to switch Scheduled-based Update to hourly.
    8. Click Save.
  4. Confirm on a remote machine that the OfficeScan server is accessible from outside the network: http://ServerPublicFQDN:8080/officescan/cgi/cgionstart.exe
     
    If the page displays "-2", then the client can communicate with the server. Otherwise, there are communication issues with the remote machines when connecting to the OfficeScan server. Check to see if there is a device blocking the communication.
Premium
Internal
Rating:
Category:
Configure
Solution Id:
1056878
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.


Need More Help?

Create a technical support case if you need further support.