Hello All,
We added our first machine with Windows 11 running on it to our Sophos setup. Everything appears to be running correctly besides the Real Time Protection, if I check the status for the machine it shows that its not running along with a red explanation mark. Any advice would be great because one day we are going to need to add all Windows 11 machines to our setup and cannot be dealing with this issue.
I've been running Windows 11 from initial release without issue. I would first check the local UI of the endpoint under the "Settings" page. You will have to disable Tamper Protection first…
I've been running Windows 11 from initial release without issue. I would first check the local UI of the endpoint under the "Settings" page. You will have to disable Tamper Protection first to see it. Does that say Realtime scanning is enabled?
The other option is to create a new file called eicar.com, and paste into it the eicar test string.
X5O!P%@AP[4\PZX54(P^)7CC)7}$EICAR-STANDARD-ANTIVIRUS-TEST-FILE!$H+H*
available here: Download Anti Malware Testfile – Eicar
Does that get blocked as evidence realtime protection is functioning?
Come to find out the guy is one of our admins and he purposely disabled real time protection so there is no issue. Thank you for responding though.