Settings

Note You may not have all the features described here. This depends on your license.

The Settings page is only available if you use Admin Login and enter the tamper protection password (available from the Sophos Central administrator).

You can temporarily change the security settings on this Mac.

You might need to do this to troubleshoot. For example, you might want to turn off a feature to see if it is causing problems on the Mac.

How to change settings

Turn on Override Sophos Central Policy for up to 4 hours to troubleshoot.

You can now make changes on this page. The changes temporarily override the policy that you (or another administrator) have applied from the Sophos Central Admin console.

After four hours, the settings automatically change back to the centrally-enforced policy settings.

Note You can change the settings back sooner if you want to. You can't do this for individual features. You must turn off Override Sophos Central Policy for up to 4 hours to troubleshoot, which applies to all the features.

Real-time Scanning

Real-time scanning scans items as users attempt to access them, and grants access only if they are clean. You can select:

  • Files. This scans local files and (if this is selected in the policy) network shares.
  • Internet. This scans internet resources. It can scan downloads in progress, block access to malicious websites, and detect low-reputation websites.

Controls on Users

  • Peripheral Control. This lets you control access to peripherals and removable media.
  • Application Control. This lets you detect and block applications that are not a security threat, but that you decide are unsuitable for use in the office.
  • Web Control. This lets you protect against risky downloads, control the sites that users can visit, and prevent data loss.

Runtime Protection

Runtime protection protects against threats by detecting suspicious or malicious behavior or traffic on Macs. You can select:

  • Malicious Traffic Detection. This detects traffic between a Mac and a server that indicates a possible attempt to take control of the Mac.
  • Ransomware Detection (CryptoGuard). This protects against malware that restricts access to files and then demands a fee to release them.