This article provides information about support for macOS 11 Big Sur.Endpoint Protection does not support macOS 11 (Big Sur) yet. Please do not upgrade until we announce support for it. We will have an Early Access Program (EAP) available soon.Applies to the following Sophos product(s) and version(s)Central Mac Endpoint,Sophos Enterprise Console Managed - Sophos Anti-Virus for Mac OS X,Central Device Encryption for MacOperating systemsmacOS 11 "Big Sur"
Apple macOS 11 is released on the 12th of November, however, it is not yet supported for Endpoint Protection by Sophos.Upgrading to macOS 11 will result in endpoint protection being disabled. We strongly recommend that customers do not upgrade any macOS clients running Endpoint Protection to macOS Big Sur at this time.The EAP for Sophos Central is targeted for the week of Nov. 23rd, 2020, pending final testing. The EAP will run through our Sophos Community with details to follow.On-premise customers will also get a version of endpoint protection that is supported on macOS 11 but will not have access to an EAP or Preview ahead of full support.Central Device Encryption (CDE) for Mac version 1.5.3 supports macOS 11 Big Sur. This was rolled out recently but bear in mind that if you use both Endpoint and CDE you will still need to wait before upgrading to Big Sur.ARM-based CPUs are not currently supported. They require macOS 11 and additional testing and requirements. Sophos will support ARM-based CPUs, however, the details of that support will be provided at a later date.
The next update will be when the EAP becomes available. ETA: week of 23 November 2020
Hi Sophos team,
as we're trying to enforce the policy of not updating to BigSur across the org - would you be so kind to add 'macOS Big Sur installer' to the list of controlled software, so that we could…
as we're trying to enforce the policy of not updating to BigSur across the org - would you be so kind to add 'macOS Big Sur installer' to the list of controlled software, so that we could prevent Big Sur installation being initiated by users right from the Sophos central admin panel?It seems logical to me that we would be able to use Sophos to lock the app that would break Sophos upon being launched.
We are rolling out a new Application Control identity on the 1st December that will allow blocking of the Big Sur installer, it will be added in the "System Tools" category which means you could select the "added in future" option in order to get this active as soon as it is available.
That's amazing, thank you so much!