Sophos Community
Site
User
Site
Search
User
Community & Product Forums
Sophos Endpoint
Sophos Firewall
Sophos Central
Sophos Factory
Sophos Mobile
Sophos Cloud Optix
Sophos Sensor
Sophos Switch
Sophos Wireless
Sophos Email
UTM Firewall
Community Blogs & Events
Sophos Community Blog
Community Security Blog
Product Documentation Blog
Application Control
Getting Started
Sophos Partners
Member Recognition
Community Leaderboards
More
Cancel
3CX DLL-Sideloading attack:
What you need to know
MDR Community Channel
More
MDR Integrations
Announcements
Announcements
Discussions
Queries
Recommended Reads
Integrations
More
Cancel
New
MDR Integrations requires membership for participation - click to join
Announcements
Subscribe
Subscribe by email
Posts RSS
More
Cancel
Tags
Subscribe by email
More
Cancel
By date
By view count
By comment count
Descending
Ascending
MDR Integrations is now Generally Available
Karl_Ackerman
Today we officially launched the MDR integrations update. Solution brief:
sophos-managed-detection-and-response-ds.pdf
EAP Closed We are no-longer accepting new customers to the Early Access Program Current members of the EAP will continue to have...
30 Nov 2022
NDR - High CPU utilization
Karl_Ackerman
An update that was sent out to NDR Sensors increased CPU utilization on the virtual appliance for the allocated VM. An update will go out today to resolve that issue. With this update we are now also detecting scanning of the network devices and web...
23 Nov 2022
What integrations would you like us to add?
Karl_Ackerman
What integrations would you like us to add:
Integration Poll
We are transitioning from Early Access to General Availability at the end of November and will support the following 3rd party integrations by category. NOTE: The Microsoft integ...
6 Nov 2022
Techvids for MDR Install and configuration
Karl_Ackerman
We are building a library of Techvids to assist you in MDR installation and configuration of the integrations:
Sophos MDR Techvids
MDR 3rd party Integrations Overview:
Sophos Firewall:
Cisco Meraki:
Fort...
20 Oct 2022
Firewall Integrations
Karl_Ackerman
For those that just want to see a video on how to deploy a log collector on a VM A video showing install and configuration of the integrator for the Meraki FW integration is available here:
https://share.vidyard.com/watch/DGBMdhWcngheJGoCu...
17 Oct 2022
MDR Integrations now available
Karl_Ackerman
Note: Integrations may involve temporary processing of data in the United States. Please refer to the
Sophos Group Privacy Notice
. We have enabled a large set of 3rd party MDR Integrations. You can find these in the Sophos Central Co...
11 Oct 2022
Security Integrations (Coming soon)
Karl_Ackerman
We have extend the capabilities in the MDR Integrations EAP to add a variety of 3rd party integrations. We ask that you configure all those that are relevant to your infrastructure. During the EAP data from 3rd party integrations will be stored ...
1 Oct 2022
Install and setup of NDR on ESXi
Karl_Ackerman
In this 8 min video from the development team we go through the setup and configuration of the virtual appliance to run on ESXi. This includes the settings required in Central and ESXi
Sophos XDR: Installation and Setup of NDR on ESXi
Thank you
26 Sep 2022
How to request a case to initiate an MDR investigation
Karl_Ackerman
We are adding the ability for you to directly request a case get created to perform either a Health check or to perform an investigation on a detection you have in the Threat Analysis Center. If you have an existing case you can comment directly in t...
30 Aug 2022
Enabling AWS Security Hub & Guard Duty in MDR
Karl_Ackerman
In Aug we are adding multiple new AWS connectors to the MDR Integrations EAP. AWS Security Hub This is a new connector that will gather alert information from AWS Security Hub and Guard Duty and generate detections for the XDR Admin and MDR Security ...
22 Aug 2022
How to join the MDR Integrations EAP
Karl_Ackerman
MDR Integrations Early Access Program As a Sophos Managed Threat Response (MTR) customer you are invited to participate at no charge or obligation in the MDR Integrations Early Access Program (EAP) for enhancements to 3rd party telemetry leverag...
9 Aug 2022
How to view ALL my Microsoft Graph Security Detections
Karl_Ackerman
For folks that have joined the MTR Connector EAP and enabled the MS Graph Security connector I wanted to provide a simple set of instructions for how you can view all your detections. More detailed queries are available in the query section, but for ...
9 Jun 2022
MDR Graph Security Connector EAP is now open
Karl_Ackerman
We have sent all registred accounts invitation keys to configure the EAP. If you have not received a KEY please send an email to MDREarlyAccessProgram@sophos.com so we can get it sorted out for you. Instructions for how to enable the EAP with ...
7 Jun 2022
Presentation Deck from Sophskills for MS Graph Connector
Karl_Ackerman
Attached below is the presentation deck used in the Sophskills demo from June 1 and 2.
2 Jun 2022
Sophskills June 2 2022 - Microsoft Graph Security connector - Early Access Program
Karl_Ackerman
At the end of May we will be starting an invitation only early access program to add support for the Microsoft Graph Security API. This EAP is open to all MTR Advanced customers and will allow Sophos to process detection alerts sent to the MS S...
23 May 2022
Configuration and Demo of MS Graph API Alerts
Karl_Ackerman
The video provides a review of the MS Graph API Connector and includes How to join the EAP How to setup the connector Community forum Exploring MS Graph Detections with queries
https://vimeo.com/708396879
community.sophos.com/.../MS-Graph-V2.mp4
10 May 2022
Introduction to the MDR Integrations EAP
Karl_Ackerman
Welcome to the MDR Integrations EAP. We are adding 3rd party connectors to improve the MDR service in detecting and resolving threats. During the EAP a number of integrations are available at no charge as we validate deployment options and data ...
26 Apr 2022
Microsoft Graph Security Connector information
Karl_Ackerman
Overview of MS Graph Security EAP As a Sophos Managed Threat Response (MTR) Advanced customer you are invited to participate in an Early Access Program (EAP) for the Microsoft Graph Security connector. We would like your feedback on the connector an...
20 Apr 2022