Enhanced Protection EAP opening for Server

We have opened up the Early Access Program to include Windows Server 2008R2 and later!

For now, the same Intercept X and AMSI features as found in the endpoint will be available, with Intercept X initially only in detection mode, not blocking. (Update: Note that meanwhile these features are now also set to block exploits).

The AMSI interface is available on Windows Server 2016 and Windows Server 2019.

Versions

Devices with an updated endpoint will have the following versions of components and features:

  • Core Agent: 2.5.5 BETA
  • Sophos Intercept X: 2.0.16 BETA
  • Sophos HitmanPro Alert: 3.7.15

Intercept X features

The server version of Intercept X brings the same new features as the endpoint version. As a short reminder, here are these features:

  • EFS Guard
  • Dynamic Shellcode Protection
  • CTF Guard
  • ApiSetGuard

Details for these features can be found in the original endpoint post about the Intercept X features.

Joining the EAP

To join the Server EAP you can follow the same steps as laid out in the instructions for joining the Endpoint EAP, just make sure to select "New Server Protection Features".