Re-Register Sophos Endpoint to Central WITHOUT NEEDING Tamper Protection password.

Question

Scenario: Machines which have been deleted from Central longer than 90 days, tamper protection password no longer available. 
 User in remote location, no admin account acces for normal user. Users not IT Literate. No safe mode or recovery mode available. 
 Remote access available remotely with full access credentials. Sophos Installer available. 
 What would be needed is for the comand SophosSetup.exe --registeronly to be available without the need of a tamper protecion password. 
 This would allow the endpoint to be re-registered on the Central account and therefore able to be managed, repaired etc. 
 Adrian.

Qoosh · Answer

Hi Sophos User5538 , 
 Thanks for reaching out to the Sophos Community Forum. 
 The only way to bypass Tamper Protection is to reboot the system into recovery mode. The following article is broken down in a more step-by-step fashion which may help with this if an end-user needs to proceed through the steps. - Simplified Tamper Protection Recovery for Non-Technical Users 
 The files that are affected when you run "SophosSetup.exe --registeronly" are protected by tamper protection, there is no other way to bypass this.

Re-Register Sophos Endpoint to Central WITHOUT NEEDING Tamper Protection password.

Top Replies