We are using the Sophos AV enterprise product.
During a vulnerability test it was brought to our attention that anyone with the correct security level could disable AV on any PC so as not to be detected during testing.
How can we prevent AV from being disabled w/o a password or some other info other than AD permission group?
Thanks,
Mike
This thread was automatically locked due to age.
