This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Intune compliance policy with mandatory Sophos endpoint protection installation

I'm trying to find a way to setup a compliance policy within MS Intune to only allow Windows machines to be marked as compliant if they have Sophos Endpoint Protection installed.

Is that possible somehow? If there is another way to do this aside from using Intune, your suggestion will be be appreciated as well, it seems like MS is pushing Windows Defender within Intune.

This thread was automatically locked due to age.

0 Project2501 over 4 years ago

Funny you should mention it, I'm just embarking upon the same just now.

If Sophos (we've got InterceptX) isn't installed, it's like InTune is picking up Windows Defender and thus marking the device as compliant.

However, the moment InterceptX is installed (and thus I think not registering itself Windows Security Centre) InTune marks the device as non-compliant.

This would lead me to believe that InterceptX isn't (either properly, or at all?) registering with WMI as that's where Action Center gets its information from (and thus where InTune also gets it from).

Will come back if I find anything more pertinent/useful.
Cancel
Vote Up 0 Vote Down

Cancel
0 Project2501 over 4 years ago in reply to Project2501

Found a little more:

https://docs.microsoft.com/en-us/windows/security/threat-protection/intelligence/virus-initiative-criteria

One would assume Sophos have gone through all these hoops?

More annoyingly, going into the security centre on the laptop I'm testing with, it shows (and forgive the image quality)

I feel like I'm missing something obvious.
Cancel
Vote Up 0 Vote Down

Cancel