Hi team， The customer has purchased Sophos XDR for 400 terminal PC users, but all the terminal PCs cannot access the Internet. Based on this situation, how can the user computers use the endpoint protection function, how to deploy the agent, and use…

Hiya, I am weirdly experiencing major hits to performance on a veriety of high end Windows surface devices following the 24H2 feauture update. I initially felt as if it was windows itself doing this but, upon testing, it seems to disappear when removing…

Hi, we are getting below error i have added Sophos certificate to the trusted certificate of windows but no luck also i have followed sophos KB article again same problem.if i removed endpoint from that machine error is not showing.

Hi all, I'm looking for instructions on how to install Sophos Intercept X with Citrix PVS services. The instructions I've already found all want to disable certain Sophos services to delete the machine_id file, and that's where the problem comes in…

Hello everyone, I have configured DLP policies for one of our clients, they work as expected. There is just one remark our client gave us : Sometimes if a user does the same action repeateadly, generating alerts every time he does that action, that…

We have a 4 core VM with Linux SPL Agent 2024.2.1.2 4 regular processes run and each run intended at 100% - usually. Currently Sophos osquery.4 is consuming 1 core at 100% so the other 4 processes run at about 75% only, slowing down calculations of…

I have been using Sophos EndPoint for about 3 years and using ChatGPT for about a year. Everything has been working fine until about 4 to 6 weeks ago when all of the sudden staff in our office cannot upload files to ChatGPT. I wasn't sure what is was…

Hi After installing Sophos agent, the agent is not communicating with central. I put the password in the agent, after that I can not select the 4 hours disabled protections. When I disable the temper protection, but the agent is not communicating…

Hello, A customer of ours had an old MacBook and transferred it, via Apple's migration assistant, to a new MacBook. Now today I wanted to install Sophos Intercept X Essentials but the installer indicated that the product was already installed. However…

Hello, We have a Sophos Central account with about 150 computers and 25 servers. XDR is used. The licences have currently been active for about 8 days, but no detections have been displayed so far. Could it be that nothing has been detected so far and…

Is Sophos CPU history recorded in Data Lake?

Hi Community, I would like to be able to query the Sophos Sub-Estates db with SQL. I read that there is Live Discover service for queries, but I wonder if it can be purchased with a separate license. Otherwise, I would like to know a way to connect…

I have identified a problem with Sophos Encryption, and I need to do a validation before bringing it up with Support as an issue. I can run a powershell command (as seen below) to find the encryption status however it doesn't tell me that it was Sophos…

Hello, I am looking for help with deploying Sophos Endpoint to MacOS via Intune. Specifically, I would like help configuring the configuration profile to set the permissions for: Full Disk Access system extensions notifications You have…

Hi Sophos, I can't get the Application Control policy to block Proxy / VPN Tools. I've tried to edit the Base Policy as well as create a new policy and neither seem to work. See the attached image. I have tried selecting all VPN / Proxt Tool objects…

I have a customer environment where the server has multiple NICs and IP addresses. The client stores very large video files on the server. Each recording studio has a dedicated 10GBps LAN link to the server and each is on a 172.19.x.x/24 Class B internal…

Hi, we are a new partner coming from an ESET ecosystem, looking to replace it with Sophos for our customers, since we are using XGS and it makes sense to integrate Endpoint as well. While testing Intercept X in our environment first, my developers…

hi all, got a weird problem on a mac when joined to the domain and sophos is installed and all sophos services are up and running on sophos central and on the local mac i get both green tick so i know sophos is installed/running and happy but as…

Hi! I wanted to know if there is a way to download the list of users and the serial numbers of the computers assigned to them. From what I've seen in the reports section, it doesn't allow modifying the columns. Do you know if it's possible to download…

I have 3 devices with the same name, 2 of them were "deduplicated" according to my sophos central events, they still share the same name but the last activity of one of them was two weeks ago, is it safe to delete the one I know doesn´t have any activity…

Hello everyone, Is anyone else getting "High-Risk" detections " WIN-INI-PRC-VEEAM-BACKUP-SUSP-CHILD-PROCESS-1 " from Veeam Backup and Replication? Parent Command Line: "C:\Program Files\Veeam\Backup and Replication\Backup\Veeam.Backup.Service…

Hi, We have a customer that has a Sophos XGS126 running SFOS 20.0.0 GA-Build222. and they also have Sophos Endpoint on clients and servers (all Windows). They have an external website that they can't reach and where they get this error in the (any…

hi all, installed sophos endpoint multiple times but i get the same thing everytime, the service ScanD is not running I have disabled SIP so sophos can install unsigned drivers which has worked as before SIP was enabled it was blocking the "network…

hi all, how would i remove sophos endpoint on a mac please without knowing the tamper code, as when i go on sophos central i cant get the macs tamper code as it hasnt registered the mac, so theres no way of finding the tamper code thanks, rob

I want to make a report of detection from sophos central, but there is no such a button to export those kind of data. I need 'detection rule', 'date', 'category', 'severity' contents in this report. Someone know how to make this kind of report…