I've created a new policy to schedule a weekly AV scan, since It's not possible to edit the Base Policy (well I can edit it but no Save option). When does the policy actually get deployed, since nothing seems to happen on the test computer.
the save button in the base policy is in the top right corner of the last step (see attached screenshot). The policy should be deployed almost immediately. On the SAV Endpoint you can see in the Scans section that a "Sophos Cloud Scheduled Scan" is set up, when the policy is deployed. When a client is not compliant to the policy, a Message is displayed in the Action Center (Dashboard).
I wasn't able to navigate to the last screen under Edit Policy. But on restarting, I find I can go the last screen and save the base policy. So I have deleted the Test policy I created before, and edited the base policy to schedule a scan. But there is no sign of a scheduled scan on the test computer.
I just set up a scheduled scan in the base policy and it worked using a windows 7 vm. I attached a screenshot, so you can see how it looks like when a scheduled scan is running (bottom-left corner). Please setup a scheduled scan e.g. 10 minutes in the future and check if it runs.
If it doesn't here are a few steps to narrow down your problem.
1.
1. On which windows version did you install the endpoint?
2. Does your machine appear in "Settings - Manage Users - Logins"?
3. Disable realtime scanning in the base policy, the client should show a warning "on-access scanning disabled by sophos" that means your endpoint is connected to the cloud
4. If realtime-scanning wasn't disabled, check your firewall settings, connection settings etc.
When I logged onto the test computer today the Scheduled Scan now appears under Scans. In the Summary it says it hasn't run yet, but there is no mention when it is scheduled for.
I disabled real-time scanning in the policy and a message appeared on the test computer that on access scanning was disabled. When I enabled on access scanning again on the test pc, I did get a warning on the console that there was a policy non-compliance. Although I had to restart the cloud connection in the browser - continuous busy spinner when I clicked on Policies. So it appears to be mostly working now.
The endpoint is installed on a Windows Vista notebook.
It appears OK on the Cloud console under Settings-Manage Users-Logins.
sorry for the late response. Basically everything seems to work fine.
The issue with the hanging policy tab is already known ([1.1][BUG] hanging in IE9/10 (Win 7/8) - Sophos User Bulletin Board).
It is intended that the dashboard displays "policy non compliant" when you disable on access scanning on the endpoint and still got it enabled in a policy.
You can prevent users from making any changes in the endpoint settings directly, be enabling tamper protection in Settings - Administration.
sorry for the late response. Basically everything seems to work fine.
The issue with the hanging policy tab is already known ([1.1][BUG] hanging in IE9/10 (Win 7/8) - Sophos User Bulletin Board).
It is intended that the dashboard displays "policy non compliant" when you disable on access scanning on the endpoint and still got it enabled in a policy.
You can prevent users from making any changes in the endpoint settings directly, be enabling tamper protection in Settings - Administration.
