I am having an issue with uninstalling Sophos AV from domain controllers. I am getting a message that I must be a member of the SophosAdministrator group in order to uninstall the software. On workstations, I've gotten around this issue by adding the SophosSAU account to the SophosAdministrator group. However, there are no local groups because this is a domain controller and group membership to DC's is controller by AD. In AD, I do the see SophosSAU accounts for all of my domain controllers, including the ones in question, in the users group. There is also a SophosAdminstrator group in AD. However, no SophosSAU accounts are members. I noticed that even on DC's that are currently "working", I get the same message when trying to uninstall. Therefore, not only do I need to fix two DC's with this issue now, I am concerend that the next update that requires an uninstall/reinstall is going to cause all of our DC's to go into error status and we will have this problem across the board.
I've researched this issue quite a bit and have seen quite a few others with this problem. However, I have not seen any solutions from Sophos on this issue and my TSAM doesn't seem to understand how it works either. Does anyone there understand how Sophos interacts with DC's as far as local vs AD group membership and what I need to do so that Sophos can be uninstalled on a Domain Controller?
This thread was automatically locked due to age.
