Scheduled Scan - Detailed Report

Question

Hi folks,

We are deploying Sophos Endpoint Security and Control (Version 10.0.6) from Enterprise Console (Version 5.1.0) to Windows 2003/2008 Servers. I have set up policies for a scheduled scan to be done out-of-hours.

Is there a particular log file anywhere (console or client) that can confirm that certain files were excluded from the scan as per the policy imposed? Viewing the report summary on the client doesn't return this sort of detail.

Many thanks in advance,

John P

This thread was automatically locked due to age.

QC · Accepted Answer

if I were to put in an incorrect file path in the exclusion policy, would an error message be returned alerting me to this No, John. It's not considered an error if a path doesn't exist - for one thing, you'd always look up a file/path you're about to scan in the exclusion list,  not look up an excluded item in the "full" list and prune that one. Or you might want to exclude a certain application on clients with different OS versions, architectures and/or OS languages, or an application which isn't installed on all clients. To avoid meaningless alerts you'd have to put the clients in different groups (which might not be possible at all if you use AD sync).  Christian :27381