Sophos Central Endpoint and SEC: Computers fail/hang on boot after the Microsoft Windows April 9, 2019 update. Please follow knowledge base article 133945
Learn about the Benefits of Multi-Factor Authentication (MFA). Turn your MFA on now!
Tamper Protection must be disabled before changes are made to the local Sophos configuration or if there is a need to uninstall the existing Sophos product. Disabling the Tamper Protection requires that the logged in user knows the actual password that was set in the policy and that the user is a member of the local group SophosAdministrator.
This knowledge base article describes the steps to disable Tamper Protection from various Sophos products.
Please be advised that there is no Tamper Protection for the standalone Sophos on a Mac.
The following sections are covered:
Applies to the following Sophos products and versions Enterprise ConsoleSophos Endpoint Security and Control 10.8.4Central Mac EndpointSophos Central Admin UTM Managed Endpoint
Note: Adjusting this policy will affect all endpoints wherein this policy is applied to. For more information about configuring policies, take a look at the Enterprise Console Help.
Note: Tamper Protection cannot be disabled permanently.
Note: Sophos Central will automatically enable Tamper Protection after four hours.
SEDcli.exe -TPoff <password>
C:\Program Files\Sophos\Endpoint Defense
Only Windows operating systems can be managed by Sophos UTM.
If you've spotted an error or would like to provide feedback on this article, please use the section below to rate and comment on the article. This is invaluable for us to ensure that we continually strive to give our customers the best information possible.
Every comment submitted here is read (by a human) but we do not reply to specific technical questions. For technical support post a question to the community. Or click here for new feature/product improvements. Alternatively for paid/licensed products open a support ticket.