No funciona la descarga del adsync en el sophos central

Hi, Under this API - https://developer.sophos.com/docs/siem-v1/1/routes/alerts/get , there is a value returned which is 'type' and it has such example replies such as 'Event::Endpoint::OutOfDate' - does anyone have a full list of these values exactly…

Is it possible to ship process creation - and other telemetry - from XDR/Central to SIEM? CrowdStrike has an FDR feature to write telemetry to S3, allowing you to consume it within Splunk etc. MS Defender for Endpoint (MDE) has something similar with…

Good morning folks. I've hunted around and searched through the site here, and no where can I find a way to reset the PIN for my MFA. I'm still fairly new to the software, so I am assuming that I'm missing it and not that it's just not there. Is there…

When an endpoint in Sophos Central shows an out-of-date device that needs updated... Is it better to force an update through Sophos Central Admin Dashboard or wait till it checks for updates automatically on the scheduled day/time? Any suggestions or…

Rather than having to go to Email Security Dashboard / Reports / Data Loss Prevention Policy Violations and look at the log, I'd like Sophos Central to send me an email when it detects a violation. I don't see an option to generate an email.

We used to use SEC and this all worked fine. We mainly used to use Email notifications to monitor when users were plugging in USB devices, and it also used to send us an email detailing which files had been copied. When we moved to Sophos central, it…

Hello, we have the porblem, that external Users out of our O365 Tedant (e.g. MS Teams Guest Users) automaticly replicated by the Sophos AD Sync, so we habe many unwanrted accounts in Sophos. How must i set the Filter options to exclude AAD Guest…

Hello, I was wondering about what the process is like for when a license expires. I currently have 16 machines using Intercept X for Servers, and they're due for expiry soon. Please see the screenshot below: Sorry for being pedantic, but I am…

Hey Guys, I am facing a problem with deploy the agent from Datto rmm. our client has arond 80 workstations and 17 of them is succed and they have sophos agent maar the rest not. Here is the log file with the error from rmm. Thanks for anyone can help…