Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 14 subscribers
  • Views 8460 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Cloud - General Questions

Sunith Philip

We just setup a Sophos Central. We have some questions and hope the experienced players here can answer the questions.

1. While trying to create a new policy and edit the web control policy to block peer to peer, the option is grayed out? How can we change this setting.

2. How good is the server lock down option?

3. If a server is lock down and we need to run an installation or update? how do we white list this installation?

4. How do we create groups? Any best practice methods to setting up groups?

5. If a malware is detected and not cleaned, how can we do this directly from the central console. we were able to clean it from the endpoint however, just like to know if we can clean it from the central console



This thread was automatically locked due to age.
Parents
  • 0

    HI Sunith, 

    1. While trying to create a new policy and edit the web control policy to block peer to peer, the option is grayed out? How can we change this setting.

    Ans Choose Let me Specify and select Peer to Peer Snaps*

    2. How good is the server lock down option?

    Ans : That is a tough question based on the expectation of the outcome. It would have an option of Server lockdown (which allows only running software installed) and the policy is machine based instead of user based. 

    3. If a server is lock down and we need to run an installation or update? how do we white list this installation?

    Ans: Two options 1) Exclude the path and the Folder of the software installation snaps* 2) Disable Server lockdown > Update > Enable Server Lockdown.

     

    4. How do we create groups? Any best practice methods to setting up groups?

    Ans: You may create Group on Central and add existing users onto the Group or import from AD using AD sync tool . System  Settings > Active directory Sync 

     

    5. If a malware is detected and not cleaned, how can we do this directly from the central console. we were able to clean it from the endpoint however, just like to know if we can clean it from the central console

    Ans: If malware is detected and not cleaned this would mean that manual interpretation is necessary , If its detected on Endpoint it would reflect on central and you may initiate the clean from there. So the next time the system is online the command would be received and would be removed at the background. 

    you may refer our Knowledge-based Articles. for more information in detail .

    Thanks and regards

    Aditya Patel 

    Regards,

    Aditya Patel
    Global Escalation Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.

Reply
  • 0

    HI Sunith, 

    1. While trying to create a new policy and edit the web control policy to block peer to peer, the option is grayed out? How can we change this setting.

    Ans Choose Let me Specify and select Peer to Peer Snaps*

    2. How good is the server lock down option?

    Ans : That is a tough question based on the expectation of the outcome. It would have an option of Server lockdown (which allows only running software installed) and the policy is machine based instead of user based. 

    3. If a server is lock down and we need to run an installation or update? how do we white list this installation?

    Ans: Two options 1) Exclude the path and the Folder of the software installation snaps* 2) Disable Server lockdown > Update > Enable Server Lockdown.

     

    4. How do we create groups? Any best practice methods to setting up groups?

    Ans: You may create Group on Central and add existing users onto the Group or import from AD using AD sync tool . System  Settings > Active directory Sync 

     

    5. If a malware is detected and not cleaned, how can we do this directly from the central console. we were able to clean it from the endpoint however, just like to know if we can clean it from the central console

    Ans: If malware is detected and not cleaned this would mean that manual interpretation is necessary , If its detected on Endpoint it would reflect on central and you may initiate the clean from there. So the next time the system is online the command would be received and would be removed at the background. 

    you may refer our Knowledge-based Articles. for more information in detail .

    Thanks and regards

    Aditya Patel 

    Regards,

    Aditya Patel
    Global Escalation Support Engineer | Sophos Technical Support
    Knowledge Base  |  @SophosSupport | Sign up for SMS Alerts
    If a post solves your question use the 'This helped me' link.

Children
Unfiltered HTML