Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 1 subscriber
  • Views 1061 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SOPHOS TAMPER PROTECTION

fdsafdsfds

Why is it that I can disable SOPHOS's services even the tamper protection is enabled.

Tamper protection will be useless, right? It should also protect the services.

:17197


This thread was automatically locked due to age.
  • 0

    No need to shout.

    This has already been discussed (for example here). If you have administrative rights you have administrative rights. In an AD environment you can control permissions with a GPO.

    Christian

    :17199
  • 0
    QC wrote:

    If you have administrative rights you have administrative rights. In an AD environment you can control permissions with a GPO.

    Exactly.  If, for whatever reason, you have given a user admin rights they will be able to do anything you can.  Unlike you their experience may not extend to understanding what disabling services can do to the protection and stability of a computer.
    As QC suggests, you can control which admin groups are allowed to stop services using a GPO.  It's not something that we support directly as it's all based on Microsoft documentation.  However to make it a bit simpler and to get you started we have written the following article.
    How to prevent administrative accounts from stopping Sophos services
    You may find it useful.

     

    :17351