This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Loss of Advanced Shell in Sophos Firewall v19

From the V19 EAP 'What's New' file - "Advanced Shell – With the addition of many comprehensive logging enhancements in the GUI, and in-line with industry best-practices, access to the Advance Shell will be restricted to licensed commercial versions of the product only."

Why the distinction between licensed commercial and other licences (which I presume means Home licenses)?



This thread was automatically locked due to age.
  • Only the Home license is affected by It.

    If you access the logs through the device console after trying to open the advanced shell, there will be a line showing It has detected the Firewall is running the Home License, and that's why It blocked the access for the shell.

    Any other license (Including Trials) can access the advanced shell without any issues.


    If a post solves your question use the 'Verify Answer' button.

    Ryzen 5600U + I226-V (KVM) v20 GA @ Home

    XG 115w Rev.3 8GB RAM v19.5 MR3 @ Travel Firewall

  • Software Trials are also included in this. Generally speaking, all licenses, which are not tied to Sophos directly. For example, if you do a Proof of Concept with a Hardware Appliance from Sophos, you have access to the Advanced Shell. But not with a virtual appliance or a home license. As the statement described because of industry best practices. 

    __________________________________________________________________________________________________________________

  • could you please clarify that last sentence.   "but not with a virtual appliance"    

    You mean, a virtual appliance w/o a license? 

    If the virtual appliance owns a paid license it will still have access to the adv. shell, right?

  • Correct. The true impact is simply something, you download and install at your own. Everything else, which had Sophos involved (You downloaded a virtual appliance and purchased a base license) will give you the Advanced Shell.

    __________________________________________________________________________________________________________________

  • To a point on another thread about people using Home in their HomeLab for work exploration, I read in the Reddit Sophos group (OK, not as authoritative as LuCar Toni) that if your employer has a Sophos license, they only need to talk to their Partner to get a Home Premium license. If true, this makes a lot of sense and I wish it would be confirmed.

  • because of industry best practices

    ...and what would those be? I read that but have no idea what 'best practices' it is talking about!

  • 'best practices' is very selective, depends on what you are trying to justify.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.

  • @rfcat_vk: it's my impression that Cisco, Fortinet, and PAN don't have free firewall software that you can load on your own hardware. So, by logical deduction none of them allow raw shell access to the OS underlying their firewalls. QED. ;-)

  • It looks like this program is only available for Sophos Home Antivirus (Endpoint for Windows/Mac).

    It’s possible for any Sophos Customer to reach out to us to obtain Sophos Home Premium licenses based on the size of their organization. Originally this program was rolled out to help organizations that required employees to work from home on personal devices that didn’t have antivirus protection. 

    Kushal Lakhan
    Team Lead, Global Community Support
    Connect with Sophos Support, get alerted, and be informed.
    If a post solves your question, please use the "Verify Answer" button.
    The New Home of Sophos Support Videos!  Visit Sophos Techvids
  • Hi,

    I don't understand your post, please expand. I have had Sophos home premium for sometime before working at home became fashionable it is installed on two of my devices at the moments and will be installed on a third when I comfortable that it works reliably on a Mac Air M1.

    Ian

    XG115W - v20 GA - Home

    XG on VM 8 - v20 GA

    If a post solves your question please use the 'Verify Answer' button.