Thread Info
  • State Suggested Answer
  • Replies 7 replies
  • Answers 1 answer
  • Subscribers 10 subscribers
  • Views 4107 views
  • Users 0 members are here
Options
Suggested

Unable to reset Tamper Protection on non administrated devices

quasar

Hello,

we have a couple of devices which already have the ednpoint protection installed, but are shown under the topic not administrated devices.

I already tried the following workaround: https://support.sophos.com/support/s/article/KB-000036125?language=en_US#Windows_10

Problem is, that when I select the command prompt there is no admin account to select. I double checked that there is a local admin account which was also logged on to this computer.

Does anyone had the same problem or maybe a solution other than reinstall the devices?

Thanks in advance.



Edited TAGs
[edited by: Qoosh at 11:26 PM (GMT -7) on 1 Jul 2022]
Parents Reply Children
  • 0 in reply to quasar

    Another option that may work is to use bootable media to browse the files on your device. Using this method, you can browse through the files on the main system as though it were a locally attached drive. Alternatively, you could also remove the hard drive from the main device if this is easier for you, or if you have a way to connect the drive to another system.

    The only step you will need to perform while using the bootable media is as follows.

    1. Go to C:\Windows\System32\drivers 
    2. Rename SophosED.sys SophosED.sys.old 

    Once completed, you can boot the device up normally and proceed through the remaining steps in the KBA from step 10.

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
Unfiltered HTML