This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Windows 10 - Sophos Endpoint Protection (UTM) or Windows Defender?

I just upgraded to Windows 10 Pro 64-bit from a newly created Windows 7 (Ultimate, 64-bit). I am thinking about using this system going forward as my personal, production Windows system. (My previous "production" Windows system was Windows 7 Ultimate 32-bit, which is still available, as is the new Windows 7 64-bit instance.) I have several Windows systems, all of them in virtual machines.

Windows Defender is built-in and active on the new Windows 10 system. Here are my questions, all relate to anti-virus/malware protection:

* Should I keep Windows Defender or install Sophos Endpoint Protection, which would be coupled to my home UTM? 

* If I install Sophos Endpoint Protection, what do you recommend that I do regarding Windows Defender?

* Does anyone have usability experience with Sophos Endpoint Protection on Windows 10 that they can share - good or bad?



This thread was automatically locked due to age.
Parents
  • Use Sophos if you plan to manage your client with Sophos or Windows Defender if you have SCCM or a GPO that you want to use for management.

    Windows Defender is built in into Windows 10 but it disables itself as soon as it detects another antivirus engine in place (like Sophos Endpoint Security).

  • Actual Win10 Build 1607 (anniversary-update) allows to use windows defender and other av-engine together...

    just testet it with enabling defender and have sophos endpoint protection (utm) installed...

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...

  • I have not yet received the Anniversary Update from Microsoft (yet) from Windows Update. (I could download the ISO if I really want it now.) According to an article that I read, the Anniversary version of Windows 10 defers to other antivirus products as before, but there is a new feature that lets you configure Windows 10 to run a Windows Defender scan your system periodically (say, once or twice a month) as a backstop to your other antivirus software. 

  • correct. as i wrote...

    in detail you can use utm-av as your online-scanner and use windows-defender to check the system from time to time too..

    you cant use both as online-scanners (scan files on opening...)..

    greets

    zaphod
    ___________________________________________

    Home: Zotac CI321 (8GB RAM / 120GB SSD)  with latest Sophos UTM
    Work: 2 SG430 Cluster / many other models like SG105/SG115/SG135/SG135w/...

  • Hi

    A mildly curios observation...

    I have Endpoint protection installed on a 32 bit Windows 10 'device' (actually a Minix Z64 box, used as a HTPC) and a 64 bit Win 10 VM (running on a Qnap NAS). This morning, the Minix box received the dreaded 1607 Anniversary Update after the post-update reboot, I spotted that in the Windows notifications area, it claimed to have removed the Sophos 'applet' due to it being incompatible with this version of Windows, but fortunately, it still seems to exist (and the machine shows up in the UTM Endpoint section). I planned to check again and get the exact message, but the notification is no longer there and after some www dredging, I've found out that Win 10 doesn't log notifications. I wonder if the Sophos 'tamper protection' feature prevented its removal? I should maybe completely remove and re-install the 3 Endpoint related packages, just in case it's been in any way 'damaged' or compromised by a partial removal attempt, but it certainly all looks to be okay (actually, I should maybe buy a Windows 7 Pro disc/key for the Minix box). [:)]

    Incidentally, I looked at the options to roll back to 1151 (due to an unrelated problem) and I see that the option does not exist on my Minix box (the 'Go back to an earlier build' section is simply absent) so it makes me all the happier that for my main machines, I moved to using Debian a couple of years back (the Win boxes are now just for 'toys', or for running Windows only software packages that I very occasionally require to use); for me, Windows 10 hammered the final nail into my MS OS coffin.

    Bri [:D]

Reply
  • Hi

    A mildly curios observation...

    I have Endpoint protection installed on a 32 bit Windows 10 'device' (actually a Minix Z64 box, used as a HTPC) and a 64 bit Win 10 VM (running on a Qnap NAS). This morning, the Minix box received the dreaded 1607 Anniversary Update after the post-update reboot, I spotted that in the Windows notifications area, it claimed to have removed the Sophos 'applet' due to it being incompatible with this version of Windows, but fortunately, it still seems to exist (and the machine shows up in the UTM Endpoint section). I planned to check again and get the exact message, but the notification is no longer there and after some www dredging, I've found out that Win 10 doesn't log notifications. I wonder if the Sophos 'tamper protection' feature prevented its removal? I should maybe completely remove and re-install the 3 Endpoint related packages, just in case it's been in any way 'damaged' or compromised by a partial removal attempt, but it certainly all looks to be okay (actually, I should maybe buy a Windows 7 Pro disc/key for the Minix box). [:)]

    Incidentally, I looked at the options to roll back to 1151 (due to an unrelated problem) and I see that the option does not exist on my Minix box (the 'Go back to an earlier build' section is simply absent) so it makes me all the happier that for my main machines, I moved to using Debian a couple of years back (the Win boxes are now just for 'toys', or for running Windows only software packages that I very occasionally require to use); for me, Windows 10 hammered the final nail into my MS OS coffin.

    Bri [:D]

Children
No Data