Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 4 replies
  • Subscribers 10 subscribers
  • Views 2135 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos causing windows logins to freeze at "Personalized Settings"

Josh Rogalski

We are a Sophos Cloud customer, and we are trying to hunt down an issue with some of our users hanging at a black screen with a small window showing "personalized settings".  When this happens to users, it happens for 10 to 15 minutes at a time, and then finally let's them onto the desktop.  We have had this issue off and on for several windows iterations, and it seems to always happen after "Cumulative Updates" to Windows 10.  It is almost like these CU updates modify something on first login after the update, and Sophos (or something else) is slowing it down or rate limiting file updating.  This is just observation over the course of months and months of frustration. It might not even be Sophos, but that seems to be a common thread here. 

Does anyone have any suggestions?  If it is Sophos, is there a setting that rate limits updating of files in the "System32" or "syswow64"?  Or perhaps the registry? Almost feels like the files that get updated are not being updated quickly so it waits and waits and waits until Sophos (or something) finally finishes allowing them to update. Any suggestions or experience with this issue would be so ever helpful. 

Thank you in advance for any insight you can give.

 



This thread was automatically locked due to age.
  • 0

    Hi  

    Could you please confirm on which OS platform you are facing this issue? If Sophos Endpoint is causing the issue, we will need to find the exact component responsible for the same. Please check this article and see if you are able to get the component causing the issue? Do you see any errors under the event logs? Process monitor logs can be helpful here. 

  • 0 in reply to Shweta

    Hello Shweta, my apologies on not seeing this message.  What we found is that once we had our Security person update the endpoint installer for Sophos, coupled with the creation of a new Windows image for deployment (a clean install of Windows, with the latest update already embedded) it fixed the issue.  It is possible that something was fixed inside of Sophos or in Windows as we never did figure out the exact cause.  When we would have a computer with the issue, we would image it with that newly created Windows image and install Sophos with the latest Sophos stub installer and the issue hasn't come back since. Hope this helps others!

  • 0 in reply to Josh Rogalski

    Hi  

    Thank you for the update. Glad to know that it has been resolved for you now.

  • 0

    If anyone else experiences this issue with extremely slow logons and uses folder redirection we ran into an issue with the Sophos EDR functionality on our file server. It crippled our user logons when the threat protection server policy setting, "Allow servers to send data on suspicious files, network events and admin tool activity to Sophos Central" was enabled under remediation. Once this was disabled on our file server logons resumed as normal. 

Unfiltered HTML
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?