Sophos Account Health Check
Credit to Author: Sally Adam| Date: Mon, 05 Sep 2022 12:41:25 +0000
Sophos’ endpoint and server protection solutions are packed with technologies that protect your organization against advanced threats. To optimize your defenses, it’s important that they are correctly configure and deployed.
The Sophos Account Health Check enables you to quickly identify and address configuration issues with your Sophos protected devices, maximizing your defenses. Available to all customers managing their Sophos endpoint and server security through the Sophos Central platform, it performs a number of key checks:
- Software assignment – do devices have all the right software assigned to them?
- Threat policy – are policies using recommended settings?
- Exclusions – are any exclusions creating significant exposure?
- Tamper protection – has tamper protection been disabled?
While recommended settings are automatically applied with all new Sophos deployments, over time issues can develop as devices are added and removed, team members change, and different software subscriptions are purchased.
We recommend customers review the health check at least every three months to maintain a healthy environment.
Getting started with the Account Health Check
Find the Account Health Check in the main menu in Sophos Central:
Clicking through takes you to the Account Health Check dashboard where you can see the status of all the checks in one place.
Example Check: Tamper Protection
Tamper protection prevents adversaries from turning off your defenses so they can deploy their payloads. The tamper protection check identifies any machines with this feature disabled and provides guidance on how to fix it.
Click the link to jump directly to device management list, then select the impacted devices and turn tamper protection back on.
If tamper protection has been turned off at a global level, you will be prompted to enable it in the Global Settings before fixing individual machines.
Click-to-Fix
“Click-to-Fix” will be the next enhancement to the Account Health Check feature. This will allow you to easily correct a failed check; for example, to update all Threat Protection policies to use with Sophos recommended settings.
More to come!
We are continuing to develop the Account Health Check capability and will be adding further checks and remediation guidance in the coming months.
Should you need help running the check, check out our Sophos Community article and reach out to the Sophos technical support team.