In the Server Protection Threat Protection Policy, Sophos recommended some settings to enable: Prevent registry credential theft and Prevent privilege escalation.
Are there any known issues/conflicts with these settings once enabled?
In some cases, monitoring applications which track what your end-users are doing may generate detections. This is the only issue I have come across thus far.
That said, it’s typically possible to add exclusions to white-list certain actions.
No known issues with SAM (Security Account Manager) access once setting is enabled?
No issues that I am aware of currently. You can find our Known Issues List documentation at the following link. When searching through previous cases, I could not find any issues reported either.- Known Issues List for Sophos Products
In an update last year, the capabilities of CredGuard were expanded upon so that it can protect the Security Account Manager as well.