This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Recommended approach to management of unused accounts?

Re. accounts automatically created by Sophos, e.g. AzureAD\FirstnameLastname, DEVICE\administrator, DEVICE\defaultuser1

 

Sophos seems to allow two approaches for managing 'unused' (or rarely used) accounts in Central Admin:

a. Move them to the corresponding device owner via Logins > Edit > 'Modify Logins' section to the 'Assigned Logins'

b. Create a new dummy Sophos user (e.g. 'Administrator') and add them all per: https://community.sophos.com/kb/en-us/119874

 

Q1. We don't have a requirement to apply a single policy to all unused accounts. Are there any functional or practical differences between the two approaches that should be considered? Presumably (a) is preferable as it doesn't require another user to be created (on the assumption that the device owner is 'responsible' for all logins to their device).

Q2. Given the user creation is automatic, is there a way to have new users automatically added to a given device user, e.g. John Smith owns DEVICE1, so newly created DEVICE1\JohnSmithJnr would be assigned to User 'John Smith' in Sophos Central without manual Admin intervention?

 

Many thanks in advance!



This thread was automatically locked due to age.
Parents
  • Thanks Gowtham, but the email setup link wouldn't reassign an already created user/login. I've just gone ahead with option (a) to reassign the login to the device owner, then deleted the now empty (no login) user. No problems so far, but we still have to manually reassign newly created user/logins assigned to device owner.

Reply
  • Thanks Gowtham, but the email setup link wouldn't reassign an already created user/login. I've just gone ahead with option (a) to reassign the login to the device owner, then deleted the now empty (no login) user. No problems so far, but we still have to manually reassign newly created user/logins assigned to device owner.

Children
No Data