The sophos Linux EDR lists Suse linux enterprise 15.1/15.2 as unknown os, yet SLES12.5 is properly listed.
The sophos Linux EDR lists Suse linux enterprise 15.1/15.2 as unknown os, yet SLES12.5 is properly listed.
Did you ever figure this out? I've got a couple of SLES12.5 systems that are showing as unknown.
Sorry yes, you need to install libcap, which is provided in SLES 12+ via libcap-progs
That's strange because it's already installed:
rpm -qa |grep libcap
libcap2-32bit-2.26-14.6.1.x86_64
libcap-progs-2.26-14.6.1.x86_64
libcap-ng0-0.7.3-4.125.x86_64
libcap2-2.26-14.6.1.x86_64
But to be fair, I did install it after I installed Sophos but before it downloaded any updates, so maybe something got missed. I'll try re-registering one of the systems and see if that works.
EditL No luck.
You are correct. libcap is required for the AV module. Far as I know they still don't detect the sles15 os variants.
If enough of us open tickets they may fix it, but I think this will all get replaced with the capsul8 tech they acquired earlier in the year.