Hi,
my former UTM installation was not working stable after about 1,5 years. So I got replaced it. (I still possess the encrypted config backup files, though).
One of my Windows PCs was secured using "Sophos Endpoint Security and Control", TamperProtection activated. No I can't uninstall it.
I already have tried to set the registry keys according to this article: https://community.sophos.com/kb/en-us/124377
What else could I do to have it removed?
The only thing I could think of would be to install the UTM image as a VM, restore the config, and remove the tamper protection. Would that work? Or are those passwords/settings not in the backup file?
All the best,
Thomas
This is older but might still work https://4sysops.com/archives/uninstall-tamper-protected-sophos-antivirus-with-powershell/
I would think you could spin up a VM, but honestly if I were going through all that I would just re-image the computer if it is only one.
Respectfully,
Badrobot
Halo Thomas,
Just make a configuration backup, restore the old configuration backup, remove the tamper protection and restore the new config backup. Fertig !
Cheers - Bob