Endpoint Protection - Base Policy - Threat Protection

Question

Hi, 
 We have numerous endpoint installed with Endpoint Advanced, Intercept X and Device Encryption. The standard, " Base Policy - Threat Protection " is being used. By default, "Use recommended settings" is ticked and therefore all the options below, like, Live Protection, Enable deep learning, Scan downloads in progress etc are all dimmed out, but enabled. 
 Am I correct in assuming that the recommended settings are that they are all enabled and by unchecking "Use recommended setting" we can configure these manually? 
 
 Kindest Regards 
 Dave S. Chunilal

Barb@Sophos · Answer

Hi Dave S. Chunilal, 
 Unchecking the "Use recommended settings" box will allow you to modify policies as needed (including enabling additional functionality that may not be set up by default). Below, you will find additional documentation/information regarding recommended settings for Sophos Central Threat protection policy: Threat Protection Policy 
 Regards,