Detection consequences
On Android devices, Intercept X for Mobile can detect malware, Potentially Unwanted Apps (PUAs), and low-reputation apps.
The table below lists the detection consequences when Intercept X for Mobile is managed by Sophos Mobile. For details about the policy settings mentioned, see Antivirus configuration (Mobile Threat Defense policy for Android).
Tip
With the Malware apps allowed and PUAs allowed compliance policy settings, you can configure how the detection of a malicious app or PUA affects a device’s compliance status. See Mobile Threat Defense compliance rules.
| Detection | Consequence |
|---|---|
| Malicious app | App access is blocked. |
| Malicious file | Intercept X for Mobile doesn’t check for malicious files by default. Turn on the Scan storage policy setting to show a warning on the device when a malicious file is detected. Note that Intercept X for Mobile doesn’t block malicious files. Users must delete them manually. |
| Potentially Unwanted App (PUA) | Show a warning on the device. Turn on the Enable user to allow PUAs policy setting to allow users to ignore an app when scanning for PUAs. Turn off the Detect PUAs policy setting to turn off checking for PUAs. You can exclude selected apps from checking using the App group policy setting. |
| Low-reputation app | Intercept X for Mobile doesn’t check for low-reputation apps by default. Use the Apps with low reputation policy setting to show a warning or block app access. You can exclude selected apps from checking using the App group policy setting. |