Skip to content

Tamper Protection

You can turn tamper protection on and off for all your servers and users' computers.

Go to My Products > General Settings > Tamper Protection.

When tamper protection is enabled, a local administrator cannot make any of the following changes on their computer. They need the necessary password:

  • Change settings for on-access scanning, suspicious behavior detection (HIPS), web protection, or Sophos Live Protection.
  • Disable tamper protection.
  • Uninstall the Sophos agent software.

Manage tamper protection for a specific device

You can change the tamper protection settings for a specific device or server.

Open the device's details page and look under Tamper Protection. There you can do as follows:

  • View the password.
  • Generate a new password.
  • Temporarily disable tamper protection for that device.

Recover tamper protection passwords

You can recover the tamper protection passwords of devices that you’ve recently deleted.

You might need to do this so that you can uninstall Sophos software that is still on those devices.


Tamper protection passwords are stored for 90 days after you delete your device.