Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/central/Mobile/help_ixm/en-us/index.html?contextId=intune-mtd-device-status

Mobile Threat Defense device status

The Mobile Threat Defense status of a device reported by Sophos Mobile to Intune is determined by the Sophos Intercept X for Mobile status.

The table shows the relationship between the Sophos Intercept X for Mobile status (Intercept X status), the Mobile Threat Defense status reported to Intune (MTD status), and the resulting compliance status of the device in Intune (Compliance status).

Intercept X status MTD status Compliance status
Sophos Intercept X for Mobile not managed by Sophos Mobile. deactivated Non-compliant
Sophos Intercept X for Mobile managed by Sophos Mobile. No scan performed. activated Non-compliant
Device scanned and no malicious apps detected. secured Compliant
Malicious apps detected or device is rooted (Android) or jailbroken (iOS). highSeverity As per compliance policy
Device not synced with the server for longer than the maximum sync gap defined in a Sophos Mobile compliance policy. unresponsive Non-compliant

For details on the MTD status values, see the Microsoft Graph API reference.