This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Administrator rights required for rootkit scan

I'm running a full scan on a PC running Sophos Endpoint Security and Control version 10.6, managed by Sophos Enterprise Console. I get the error 'Administrator rights required for rootlet scan'. As this endpoints is managed by the SEC, how can I enable a service account with adequate privileges to run this scan?

This thread was automatically locked due to age.

Parents

0 QC over 7 years ago

Hello James Clark1,

running a full scan
initiated from the console? And subsequently this error is reported back?

Christian
Cancel
Vote Up 0 Vote Down

Cancel
0 James Clark1 over 7 years ago in reply to QC

No I'm initiating the Scan from the endpoint.
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 James Clark1 over 7 years ago in reply to QC

No I'm initiating the Scan from the endpoint.
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 QC over 7 years ago in reply to James Clark1

Hello James Clark1,

I see ... a non-admin running Scan my computer will get this error. A user-initiated scan (this applies to on-access as well) runs in the user's security context.
Why do you want that a local (non-admin) user can scan for rootkits - or is it just the error that could confuse users?

Christian
Cancel
Vote Up 0 Vote Down

Cancel