Disclaimer: This information is provided as-is and should be referenced at your own risk.
This article describes the steps to configure Apple Profile Manager to create an MDM profile that allows Sophos Endpoint to run on macOS 10.15+ without local changes (if using Profile Manager MDM).
Note: As of Sophos Central version 10.0.1, these instructions will not prevent the Security popup from occurring. We released a feature in 10.0.0 that is incompatible with macOS Server (including Apple Profile Manager (APM)) 5.10. APM only accepts .app files for permissions, which version 10.0.0 and 10.0.1 do not conform to for all features requiring security permissions. We are aware of this, and are working on adjusting our software to allow this to function again.
This article is being left up for On Premise customers, and will be updated when we have updated to allow for Apple Profile Manager to add our security permissions.
Applies to the following Sophos products and versionsCentral Mac Endpoint 9.9.4+Sophos Anti-Virus for Mac OS X 9.9.4+