Hi Abhimanyu,
"Recently, we deployed Sophos Intercept X Advanced for one of our customers. Now, they are facing system slowdowns. Could you please help me resolve this issue?
This thread was automatically locked due to age.
If the policy defined in Central is enabled, the user locally overrides the policy (should require tamper protection password to do so) and disables a feature such as real-time scanning, this will revert back to on in 4 hours. The user would have to keep overriding locally.
Also, when overridden, changes the policies in Central do not take effect.
Hi Vinay A S
If you cannot find the tamper protection password in Sophos Central, you can use the tamper protection password recovery option. For detailed instructions on uninstalling Intercept X using this method, please refer to the article Sophos Central Endpoint and Server: Recover a tamper protected system