Endpoint tenant identification

Question

We've got several computers that have endpoint installed on them and all green ticks. However they are not listed in the Sophos Central portal. It's possible that someone has used an installer for a different Sophos tenant to ours, but there appears no way to check which tenant the endpoint is checking in with so that we can try and get the tamper protection password. Remotely talking non-technical users in to booting in to safe mode to disable is almost impossible. 
 
 Surely there's a command line option or registry setting that will allow us to retrieve the tenant ID or something from the endpoint?

Qoosh · Answer

HI Stuart , 
 Thanks for reaching out to the Sophos Community Forum. 
 You can find the Tenant ID by checking the following file. - C:\ProgramData\Sophos\Management Communications System\Endpoint\Persist\CustomerIdentifier.txt 
 This corresponds to the "Tenant ID" in the Deployment CSV file. 
 If you only wish to re-register the devices with the correct tenant, this can be done by downloading the appropriate installer and running the command "SophosSetup.exe --registeronly" once Tamper Protection is disabled.