Configuration guide
This guide is for network administrators who want to protect computers running Windows Embedded platforms.
To find out which platforms we support see Supported Windows Endpoint and Server Platforms.
Embedded versions of Windows can be compiled with many different customizations, so this guide does not attempt to discuss whether each can be protected successfully. Instead, it tells you how to run checks after installation to see whether Sophos Endpoint Protection is functioning properly.
It describes how to:
- Install Sophos Endpoint Protection on computers running Windows Embedded platforms.
- Test that the software is being updated.
- Test threat detection.
- Set the peripheral control policy.
- Set the data control policy.
Install Sophos Endpoint Protection
Make sure that Microsoft .NET Framework 4 is installed.
Follow these instructions to install Sophos Endpoint Protection on your workstations: Endpoint Protection.
Check updating
To check that your workstations are receiving Sophos updates:
- On the taskbar notification area, right-click the Sophos Endpoint Protection icon and select Update now. Wait for the update to complete.
- Open Sophos Endpoint Protection.
- Click About.
- Click Run Diagnostic Tool.
- Click the Update tab and check the last update time.
Test threat detection
- Download the eicar string from http://www.eicar.org/.
- Copy the string into a Notepad file and save it as eicar.txt.
- Rename the file to eicar.com and double click it.
You should see a detection then a cleanup.
In the Sophos Endpoint UI, the Status tab will show Threat detected.
The Events tab will show threat detected and then threat cleaned up.
Clear the alert from Sophos Central:
- Sign in to Sophos Central Admin.
- Go to .
- Find the workstation you did the test on and double-click to open details.
- On the Status tab, you see an alert. Select the alert and click Acknowledge to dismiss it.
Set the Peripheral Control Policy
- In Sophos Central, go to .
- Click the Peripheral Control policy then click the Settings tab.
- Under Manage Peripherals, select Control access by peripheral type and add exemptions.
- Select Block for all the peripheral types.
Set the Data Loss Prevention Policy
The purpose of this task is to prevent the copying of sensitive files.
Support
You can find technical support for Sophos products in any of these ways:
- Visit the Sophos Community at community.sophos.com/ and search for other users who are experiencing the same problem.
- Visit the Sophos support knowledge base at www.sophos.com/en-us/support.aspx.
- Download the product documentation at www.sophos.com/en-us/support/documentation.aspx.
- Open a ticket with our support team at https://secure2.sophos.com/support/contact-support/support-query.aspx.
Legal notices
Copyright © 2020 Sophos Limited. All rights reserved. No part of this publication may be reproduced, stored in a retrieval system, or transmitted, in any form or by any means, electronic, mechanical, photocopying, recording or otherwise unless you are either a valid licensee where the documentation can be reproduced in accordance with the license terms or you otherwise have the prior permission in writing of the copyright owner.
Sophos, Sophos Anti-Virus and SafeGuard are registered trademarks of Sophos Limited, Sophos Group and Utimaco Safeware AG, as applicable. All other product and company names mentioned are trademarks or registered trademarks of their respective owners.