This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Intercept X

Greetings,

We have problems with the latest update of CIX (Central Intercept X).
After updating the agent to the latest version, the windows defender is off.
We are detecting that CIX now has AV functionality.

Up to the upgrade version:
Main agent: 2.20.11
Sophos X Intercept X 2.0.24

After the agent version upgrade:
Core Agent: 2.20.13
Sophos Intercept X 2021.3.1.12

How can we roll back this feature?
Does anyone know if the product has changed?

Sophos Intercept X

Best Regards 
Carlos Ferreira



This thread was automatically locked due to age.
Parents
  • Hello Carlos, 

    Thank you for reaching us, I'm assuming that you're previously using Sophos Intercept X a product that doesn't have AV functionalities on it which is mostly focused on intercepting traffic in your environment and can be incorporated with other security software. If what I've mentioned is right, then The said subscription is no longer available for quite some time now. Currently available products are CIXA and CIXA Server which I believed your account has been migrated to them already. The current version that you're seeing on your endpoint was the latest architect of our endpoint "Sting 2.0" which is described in this article

    Glenn ArchieSeñas (GlennSen)
    Global Community Support Engineer

    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Reply
  • Hello Carlos, 

    Thank you for reaching us, I'm assuming that you're previously using Sophos Intercept X a product that doesn't have AV functionalities on it which is mostly focused on intercepting traffic in your environment and can be incorporated with other security software. If what I've mentioned is right, then The said subscription is no longer available for quite some time now. Currently available products are CIXA and CIXA Server which I believed your account has been migrated to them already. The current version that you're seeing on your endpoint was the latest architect of our endpoint "Sting 2.0" which is described in this article

    Glenn ArchieSeñas (GlennSen)
    Global Community Support Engineer

    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Children
  • Hello Glenn,
    Thank you for your quick and enlightening answer.

    Are there any issues I need to be aware of?

    Customers with any third-party integration that checks the existence of Sophos Anti-Virus Components/Services/Drivers to indicate a protected client will need to update their checks.


    Best Regards
    Carlos Ferreira

  • Hello Carlos,

    Just like any other Security software, we may need to allow exclusions for applications that require exclusion, especially those applications that have their own exclusion list to work properly with security software. In addition, some services may not function properly if it detects competitor software as it may cause conflict. You need to remove the 3rd party security software in order for SAV to function properly.

    Glenn ArchieSeñas (GlennSen)
    Global Community Support Engineer

    The New Home of Sophos Support Videos!  Visit Sophos Techvids