On-Premise Endpoint

Sophos Endpoint Software Lockdown for Standard users via SophosUser group

On-Premise Endpoint requires membership for participation - click to join

Thread Info

State Not Answered
View Voters Login to vote on this thread 0 Login to vote on this thread
Locked Locked
Replies 1 reply
Subscribers 1 subscriber
Views 1019 views
Users 0 members are here

Options

This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Lockdown for Standard users via SophosUser group

JasonO over 15 years ago

I was curious if anyone else has beening controling the "SophosUser" local group with GPO or by script at deployment?

I work for a school district and our children have found the Quarantine back door that gives them access to the C: if it is blocked by Group Policy.

Thanks,

Jason

This thread was automatically locked due to age.

0 jak over 15 years ago

How about using restricted groups to define who is a member of the Sophos groups, this could be one thing to try:
http://technet.microsoft.com/en-us/library/cc756802%28WS.10%29.aspx
Ensure that "NT Authority\System" is left as a member of the SophosAdministrator group and maybe a global admin group so you can use Sophos.
You could also try something basic like GPO software restriction policies to prevent savmain.exe running, this could provide another hurdle for some users.
Thanks
JAK
:2288