Hello Sophos. Thanks for the support in advance!
I'm looking for advice for how to lock down user abilities in Sophos. I've had a couple instances recently where users have installed BitCoin mining software. Sophos blocked it initially, but the users were able to authorize the EXE and allow it to run. I want to remove their ability to do this.
I read this info - https://community.sophos.com/products/sophos-central/f/sophos-central/6578/sophos-user-groups-and-ad. Users in my environment are members of the Local Administrators group, so they have been added to the local SophosAdministrators group.
The desired solution should:
- Remove users' ability to authorize apps that would otherwise be blocked
- Allow another group (most likely Domain Admins) to authorize apps
Any guidance or training material would be appreciated. Thanks.
This thread was automatically locked due to age.
