"Wanna" ransomware outbreak. Please see this Sophos article sophos.com/kb/126733 for advice on how to protect your organization. Immediate action recommended.
This article provides instructions on how to log/audit changes made by MSO or SO in the SGN Management Centre. This would either be logged in the database or the application event log.
Known to apply to the following Sophos product(s) and version(s)
SafeGuard Management Center / Local Policy Editor
Step 1. Log into the management centre and create a new logging policy
Step 2. Edit logging policy
Give the policy an appropriate name and description and click OK
Select the new logging policy and set which items you would like logging by clicking on the 'question mark' and change to a tick either on the database or eventvwr
Save the changes made to the policy
Step 3. Create and assign a new policy group
Create a new policy group - Go to 'Policies' | Right click 'Policy Groups' | 'New' | 'New Policy Group'
Give the policy group an appropriate name
Apply the new logging policy to the new policy group.
Step 4. Create a new client configuration file
Via Tools | Configuration Package Tool...
Apply the new created policy group to the policy group column and create the package
Step 5. Install the client configuration package
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. If you need technical support please post a question to our community. Alternatively for licensed products open a support ticket.