remove without tamper code

Hi,

Thank you for reaching out to Sophos Community.

Kindly check the following KB and post for reference, which might assist you

• https://support.sophos.com/support/s/article/KBA-000003260?language=de
•  Uninstall Sophos in MAC without tamper protection password  

have you read this?

• 2. sudo ./InstallationDeployer --remove --ui --tamper_password <pw> 
     Note: The tamper protection password can be found in the device information on Sophos Central.
• This will trigger a consent dialog to allow the Terminal to make changes to the device.  

as i said i dont know the tamper code

have you read this?

• 2. sudo ./InstallationDeployer --remove --ui --tamper_password <pw> 
     Note: The tamper protection password can be found in the device information on Sophos Central.
• This will trigger a consent dialog to allow the Terminal to make changes to the device.  

as i said i dont know the tamper code

Hi,

My bad, can you try the following

Open terminal
enter the following 3 commands (one at a time) -- enter admin/root password where prompted.
sudo rm -R /Library/Sophos\ Anti-Virus/
sudo rm -R /Library/Preferences/com.sophos.*
sudo /Library/Application\ Support/Sophos/saas/Installer.app/Contents/MacOS/tools/InstallationDeployer --remove
Sophos will uninstall.
NOTE: For some installations replace /saas/ with /cloud/ or /opm/

what about this old method

#!/bin/bash
sudo rm -R /Library/Sophos\ Anti-Virus/
sudo rm -R /Library/Application\ Support/Sophos/
sudo rm -R /Library/Preferences/com.sophos.*
sudo rm /Library/LaunchDaemons/com.sophos.*
sudo rm /Library/LaunchAgents/com.sophos.*
sudo rm -R /Library/Extensions/Sophos*
sudo rm -R /Library/Caches/com.sophos.*

Hi,

As stated in the previous post. These steps will also work for version 10.4.7; however, The commands aren’t supported by Sophos Support. This will no longer work as of version 2024.1