This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ESAC 9.7: Completely disable Access to GUI

Hello,

we are just implementing Sopohs ESAC 9.7 and SEC 4.7.

We have a lot of users that are local admins (yes, they have to be) and i want to keep manipulations to the scanner to a minimum.

Just using the Manipulation Policy is not enough in my oppinion. You can still, for example, remove ".exe" from the

files-to-scan list or play with the firewall settings.

What i want is that there is of course an icon in the taskbar area (saying: stay calm, you are protected), but you can not right-click it and open the sophos gui, or that gui will show nothing but some useless information.

Is that possible?

thanks and best regards,

Marcs

This thread was automatically locked due to age.

Parents

0 MPro over 14 years ago

Hi,
thanks for the answer, indeed i mixed up on-access and on-demand.
As for the Users, they are professors at a university, so they have to be local admins, but indeed they don't have to act responsibly at all.
Blocking savmain.exe via GPO is a good idea indeed.
thanks again, best regards,
Marcs
:15125
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 MPro over 14 years ago

Hi,
thanks for the answer, indeed i mixed up on-access and on-demand.
As for the Users, they are professors at a university, so they have to be local admins, but indeed they don't have to act responsibly at all.
Blocking savmain.exe via GPO is a good idea indeed.
thanks again, best regards,
Marcs
:15125
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data