I have a problem at installation on a PC, we have installed the endpoint in other PCs in the same network without problems.
The installation starts and seems to work correctly, it reaches the MR/UC server and completes stage 1, then it starts working…
Hello,
I have a Windows 11 Pro Client that has a Sophos Endpoint Protection Client installed.
But in Sophos Central the client is not listed any more.
When I start an update on the client manually, there comes an error.
I can´t find any way to…
There has been some reporting that cybercrime collective known as FIN7 that is used to undermine EDR tools. From DarkReading:
AuKill," developed by the notorious FIN7 cybercrime collective (aka Carbanak, Carbon Spider, Cobalt Group, Navigator Group…
Since 1 or 2 weeks ago, we started receiving reports from users that they were experiencing performance issues at launching / closing some applications on Windows servers.
We haven't changed any policies on the servers. If we disable real time scanning…
Hey all,
This one has been plaguing me for a bit, but have been able to ignore it until now.
We have been rolling out Sophos Endpoint Protection, and Sophos Firewalls Switches and AP's across all our sites. However we started noticing these notifications…
Hi,
I have read through these forums and also some FAQ's and everything I have tried hasn't worked.
The SOPHOS administrator has been unable to recover the key, so this problem has been dumped in my lap.
Does anybody have a method they have successfully…
Hello, One of the apps I'm developing is flagged as a low-reputation app, for the following security consideration: Trigger installation (This app can ask Android to install another app). The problem is, that I didn't add a mechanism to install apps,…
We have a client that has Sophos Endpoint Protection deployed, but doesn't have a Sophos Firewall. They want to enable 'SSL/TLS decryption of HTTPS websites', but will enabling it actually do anything if you don't have a firewall CA and a deployed certificate…
I am writing an integration with Sophos EDR and I'd like to have a clickable link from our SOAR platform to a detection in Sophos. Is there a was to formulate this link or is it accessible via REST API?
I'm looking for something like "{sophos-console…
Hi,
Is there a way to see what update server endpoints are talking to?
There used to be a log of the communication that clients had with the update servers or update cache servers, but I can not find it anymore.
If anyone can point me in the right…
Can I simply run the Golden Image script https://support.sophos.com/support/s/article/KB-000035040?language=en_US#Script when I want to clone a server VM with Intercept-X installed? Some tests need to be done on the cloned VM before it will be deleted…
Hi Everyone,
Do we have any news or information on whether this issue will be resolved or not? We have a BIG client of ours that is considering ditching Sophos Endpoint because of this problem...
Sophos Central Admin: PrivGuard feature blocks application…
Hello
I can't find a way to easily monitor a folder on a mounted smb network share. For reasons not in the scope of this post it's not an option to install sophos on the actual file server.
The host that would monitor the specific folder on this…
Hi there,
I followed documentation to install SPL on a Linux server that does not have internet access.
We have a Windows server acting as update cache / message relay. This is confirmed to work for other (Windows) machines.
However the installation…
Hello there,
How can I run my Sophos AV on a device while in safe mode (Windows 11 Pro)?
Which executable file I should click to start scanning against threats?
Kind Regards,
Damian
Hello Sophos Team,
I was wondering if our license is automatically renewed or manual (buy new license code). As the picture shows the expiration date is Sep 4/2024, what would happen then?
Thanks in advance.
In relation to this, which is a closed thread with no real solution: Extreme High CPU Usage with sophps protection with Linux
I'm a bit confused here. We have this issue reoccurring on a Linux server at this point, entirely randomly. osqueryd eats up…
Hi Abhimanyu,
"Recently, we deployed Sophos Intercept X Advanced for one of our customers. Now, they are facing system slowdowns. Could you please help me resolve this issue?
Recently, we got an alert that was caused by a company we work with doing a Disaster Recovery test. This caused a duplicate record of one of our servers. We have prevented the backed-up systems from communicating out to Sophos to prevent future de-duplication…
We have a situation that's causing some annoyance with both our IT Engineers and our Information Governance staff, and its all to do with the DLP alerts to Admins when a user may be breaking our policies.
I've looked at the Custom Rules for Admin email…
Hello,
I have to migrate all my APs on Sophos Central.
I have many different models (~60). Most of them are APX320, but i also have AP55C & AP15C.
I would like to know if AP55C and AP15C are compatible with Sophos Central ?
I tried to migrate…
Hi everyone,
After the Crowdstrike update issues last week, we're conscious that a similar faulty update with Sophos could impact us as well, given all endpoint security software naturally needs kernel-level access to do its job.
We're now looking…