What's the best optimal configuration to run Sophos Endpoint Agent for Developers?

I'm apart of the infra team in my comp and we've having troubles trying to pin point and exclude certain features on Sophos that may be the cause of their VM or Laptop slowing down and using a lot of CPU or RAM resources while they are running scripts or commands on Visual Studio, especially running a command like NPM to extract packages from the web  https://nox.tips/. Has anyone came across any solution for this or a specific configuration for developers?



I
[edited by: ceaser cloie at 2:04 PM (GMT -7) on 19 Oct 2022]
Parents
  • Hi ceaser,

    Thanks for reaching out to the Sophos Community Forum. 

    I suggest starting out with Process Exclusions for the main executables that run for Visual Studio to operate.

    If the devices need to interact with files on a separate server, you may want to turn off the "remote files" option for Real-time scanning in the threat protection policy. If the device hosting the files has this option turned on, this may cause excessive overhead when interacting with files. 

    You can also try using the basic troubleshooting KBA to see if there are any specific components that are having a significant impact on performance. Once you determine which components contribute to this the most, you will want to add exclusions to whitelist your apps from being scanned by those components. You can find more information on the types of exclusions you can add in the following KBA. 
    - Set up exclusions

    Kushal Lakhan
    Global Community Support Engineer
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Reply
  • Hi ceaser,

    Thanks for reaching out to the Sophos Community Forum. 

    I suggest starting out with Process Exclusions for the main executables that run for Visual Studio to operate.

    If the devices need to interact with files on a separate server, you may want to turn off the "remote files" option for Real-time scanning in the threat protection policy. If the device hosting the files has this option turned on, this may cause excessive overhead when interacting with files. 

    You can also try using the basic troubleshooting KBA to see if there are any specific components that are having a significant impact on performance. Once you determine which components contribute to this the most, you will want to add exclusions to whitelist your apps from being scanned by those components. You can find more information on the types of exclusions you can add in the following KBA. 
    - Set up exclusions

    Kushal Lakhan
    Global Community Support Engineer
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Children
No Data