Access to the server is only possible within the university network. If you dial in via an Internet Service Provider (ISP), you must also establish a connection with the Cisco VPN Client.
The log files under C:\ProgramData\Sophos\AutoUpdate\Logs contain, among other things, an entry "CIDSYNC_E_CIDSWAPERROR".
This indicates that the cache folder of the auto-update was blocked by another process and the service could not save all the downloaded files. Usually the Windows index service is responsible for this. See http://www.sophos.de/support/knowledgebase/article/59494.html.
To improve the detection rate, you can send suspicious files to Sophos for investigation. This can be done either via a web interface or by email. More information can be found at https://community.sophos.com/kb/en-us/11490
An RPC-based protocol is used to communicate between Enterprise Console and the client on which Sophos is installed. Since additional ports are required for communication, it is easiest not to block any ports between Enterprise Console and the client.
No parameters can be given to the 'standaloneinstaller'. This is only possible for setup files provided by Enterprise Console or Control Center via CID.