This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

home use for licensed sophos customers

I have deployed a test standalone installer package using the enterprise console (article 67504) with updating pointing to a web cid, sophos home installation is updating properly, the primary server details, username and password are "grayed out" which is basically exported this policy from our enterprise console. My question is what if an employee that was issued by this home install will be terminated or will not be working anymore in our company, how can I revoke the home install. Support told me that I have to manually remove the home install from the client machine, which is a pain. Any other advise on how we can reclaim this home install or somehow make their home install not to work anymore. Our network uses active directory, web cid created from IIS.

:5864


This thread was automatically locked due to age.
Parents
  • Hello johnd,

    this was always a problem. I've talked about it with our Sophos representative years ago. The off-the-record statement was that this is not seen as a major issue (but of course Sophos will tell you have to remove it): "illegal protection" of a home computer is better than none at all and it probably won't "live" longer than the computer itself.

    I understand that you are asking "just in case" (i.e. you expect that your former employees will in most cases comply and remove it, but ...). The only practical way I can see is setting up the http updates to require an authorized proxy with per-user credentials (you can make the proxy settings configurable while still locking the update details) which you can revoke when necessary. Sure this would complicate your infrastructure.

    More of a concern: I'd rather not - as suggested in some articles - set Sophos as secondary or only update location. This way you won't have any control at all (you couldn't even monitor usage then). I believe they have done their math at Sophos and came to the conclusion that a cunning scheme to prevent such "unauthorized use" wouldn't pay off.

    Christian

    :5865
Reply
  • Hello johnd,

    this was always a problem. I've talked about it with our Sophos representative years ago. The off-the-record statement was that this is not seen as a major issue (but of course Sophos will tell you have to remove it): "illegal protection" of a home computer is better than none at all and it probably won't "live" longer than the computer itself.

    I understand that you are asking "just in case" (i.e. you expect that your former employees will in most cases comply and remove it, but ...). The only practical way I can see is setting up the http updates to require an authorized proxy with per-user credentials (you can make the proxy settings configurable while still locking the update details) which you can revoke when necessary. Sure this would complicate your infrastructure.

    More of a concern: I'd rather not - as suggested in some articles - set Sophos as secondary or only update location. This way you won't have any control at all (you couldn't even monitor usage then). I believe they have done their math at Sophos and came to the conclusion that a cunning scheme to prevent such "unauthorized use" wouldn't pay off.

    Christian

    :5865
Children
No Data