I have a customer environment where the server has multiple NICs and IP addresses. The client stores very large video files on the server. Each recording studio has a dedicated 10GBps LAN link to the server and each is on a 172.19.x.x/24 Class B internal…

Hello everyone, Is anyone else getting "High-Risk" detections " WIN-INI-PRC-VEEAM-BACKUP-SUSP-CHILD-PROCESS-1 " from Veeam Backup and Replication? Parent Command Line: "C:\Program Files\Veeam\Backup and Replication\Backup\Veeam.Backup.Service…

Veeam B&R version 12.2.0.334 keeps failing unless I disable/override Real Time Scanning > Files. We have put in place all relevant exception rules that I can find on the Sophos support portal but I find I'm still having issues caused by the RTS. …

hi, since friday we have high cpu with the sophos endpoint defense software process. windows server 2016 sophos central server core version: 2024.2.2.1 after disabling all the features the cpu is back to normal.. any ideas?

Since 1 or 2 weeks ago, we started receiving reports from users that they were experiencing performance issues at launching / closing some applications on Windows servers. We haven't changed any policies on the servers. If we disable real time scanning…

Can I simply run the Golden Image script https://support.sophos.com/support/s/article/KB-000035040?language=en_US#Script when I want to clone a server VM with Intercept-X installed? Some tests need to be done on the cloned VM before it will be deleted…

Bonjour Est il possible de purger ou diminuer la taille des logs dans C:\ProgramData\Sophosi\Endioint Defense\Date\Event Journals Mais pour un seul serveur Quel est l'impact sur la sécurité de ce serveur ? Cordialement

Recently, we got an alert that was caused by a company we work with doing a Disaster Recovery test. This caused a duplicate record of one of our servers. We have prevented the backed-up systems from communicating out to Sophos to prevent future de-duplication…

Hello, we have a problem with the feature “Protect network traffic”. We are using a terminal server, on which employees work with a program that uses EWS to send mails. We now have the problem that Sophos blocks the automatic login process via the…

Hi all, I plan to install sophos relay server and other client will connect to this server to get update and policy. For this relay server as sophos document it should be window server and anyone have this installations guide for this relay server …

As we have opened a new case on it 07354794, I wonder if this is a known result, because I cannot find any information about it. Scenario: Fully setup SATC Client / Firewall for a Windows 2022 terminal server . User logins on the firewall are working…

On some Servers behind Sophos UTM firewall, which is not capable of wildcard DNS hosts, we noticed increasing CPU load over the last days. Up to 100% today and the server became sluggish. The CPU load was rising since March 28th - where we rebooted…

When will the new Windows Server Endpoint version 2023.2 be rolled out? It has been announced some time ago (The release of Core Agent 2023.2 is currently on hold due to unforeseeable issue & we're releasing Core Agent 2023.2.1 on Feb 01 which would…

Hello Community, This message appears on a file server, with the associated IP address that is said to have carried out the attack. CryptoGuard detected a ransomware attack from 192.168.X.X (client ip) The client shows the same thing, but nowhere is there…

Hi team, we are using Intercept X Advanced for Server. I am working for Genesys telecom labs. I would like to know the steps how to configure an alert for the license limit. We have a situation that [regarding licensing] usage value exceeds the limit…

I noticed on the advisory for the recent SSL issues that there were 2 different versions of the server agent. Server version 2023.1.x Server version 2023.2.x I have a server that is on 2023.1 so thought it would make sense to update this to latest…

2024-02-19T14:30:43.7770501Z INFO : Running C:\\Users\\ADMINI~1\\AppData\\Local\\Temp\\2\\SophosSetup-1839998792\\Setup.exe 2024-02-19T14:30:43.7770501Z INFO : IsWow64Process2 not available on older platforms 2024-02-19T14:30:43.7770501Z INFO : Stage…

Hello I have an Endpoint Central Server. I started migration 4 month ago. Today I can't log into the Migration Tool to see how many computers are in the old state. I got this error. Central Migration tool say Unknown login error . See log for more…

Hello! New to this forum. We have the Sophos Agent here on all of our servers. I need to use the agent to scan a single file on the CLI and output whether or not it is infected. I need to do this in C# that's why I was looking for the CLI app. But I…

Hi all, Our Update Cache running on Windows Server 2019 last updated successfully at 2024-01-27T22:43:38.408Z and has been failing since. It was running LTS 2023.0.0.2 but the issue continued after upgrading to FTS 2023.1.2.10. I installed a new…

Hello, We are suddenly getting this error when running the installer on 2012R2 servers, we have not seen this on other OS' "License is not valid. You are not licensed to install any products provided by this installer on this computer. check your…

All 4 are either Old Servers we removed from the active list in central after uninstalling Sophos and turning them off for good or Servers where we never installed Sophos to begin with. All of them are no longer listed in our active directory and no longer…

Issue with Sophos Endpoint Intercept X Advanced for Server on Windows Server 2022 HyperV Guests Hypervisor is also Server 2022 host running Sophos Endpoint Intercept X with all the recommended HyperV exclusions in place. The guests VMs get ridiculously…

I am the admin for quite a number of Hanwha camera servers. Several in particular are in a school system. Once our servers were installed, unknown to us, they deployed SOPHOS on the servers. Now we are seeing numerous crashes, lockups, packet losses and…

We have decided to uninstall SLD from all servers where it was installed but unlocked. What a strange behaviour, that it installs itself back some time after you remove and reinstall the Sophos endpoint software completely. Then you find, you need…