Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 19273 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Using Sophos Enterprise to monitor End point user account

silentjess

Hi All,

I was asked about the possibility of Sophos to manage/monitor the End point local account creation.

For example, a staff creates a local user on PC1 and sophos is able to track that such an action was done OR to prompt that this user account creation request has been blocked or disallowed.

Sophos will create a local account called SophosSAUComputerName during installation on end point but would sophos also be aware of other local accounts being created?

Is it even possible?

I've tried to google similar when i was asked about this but i don't think this is part of Sophos functionality?

Could anyone verify?

Appreciate it!

:56023


This thread was automatically locked due to age.
Parents
  • 0

    Hi QC, thank you for replying to my query again!

    Actually i was asked about Sophos being able to prevent unauthorized creation of local user accounts on the local machines. Besides protecting the system from adwares, virus, web access to certain sites...maybe it was able to protect the system itself.

    Recently we found many odd named local user accounts created on some workstations and servers. Although the firewall and security is able to prevent unauthorized access, the security team diagnosed that it was internet applications. it seems there are apps that my users download and when executed, the programs create user accounts on the workstation, allowing unauthorized access even though my end users have no admin rights and are prevented from installing applications.

    I did google sophos and wondered if users like you whom are experience have a workaround for that.

    Thanks again QC!

    :56034
Reply
  • 0

    Hi QC, thank you for replying to my query again!

    Actually i was asked about Sophos being able to prevent unauthorized creation of local user accounts on the local machines. Besides protecting the system from adwares, virus, web access to certain sites...maybe it was able to protect the system itself.

    Recently we found many odd named local user accounts created on some workstations and servers. Although the firewall and security is able to prevent unauthorized access, the security team diagnosed that it was internet applications. it seems there are apps that my users download and when executed, the programs create user accounts on the workstation, allowing unauthorized access even though my end users have no admin rights and are prevented from installing applications.

    I did google sophos and wondered if users like you whom are experience have a workaround for that.

    Thanks again QC!

    :56034
Children
No Data