Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 1 reply
  • Subscribers 12 subscribers
  • Views 6582 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Automatic PUA Handling

F1NX

I ran into a system today that Sophos Cloud was detecting several PUAs on.  It was continually prompting the user for action on the PUAs as they sat in quarantine.  How can we change the policy for our clients to automatically handle PUAs (such as automatic removal)?  For instance we have a tradtional deployment for another client (control server onsite) and PUAs are handled automatically with alerts emailed to our support team.

:51224


This thread was automatically locked due to age.
  • 0

    HI,

    If you want to keep the PUAs you can authorize them centrally in Sophos Cloud by adding them as "scanning exceptions" in the policies. 

    As the items are detected, all of the admins in Sophos Cloud are emailed as there is work to be done on these items. 

    Apparently the ability to peform a cleanup task from the consoloe will be coming soon but for now, if you don't want to authorize them you would have to remove the file or uninstall the application.

    Regards,

    Jak

    :51228
Unfiltered HTML