Scan guest VMs

Sophos for Virtual Environments scans files on access, that is, when they are opened and closed (if you have on-access scanning enabled in your policy).

A Security VM can also perform a full scan of all the guest VMs it manages. You can either run a scan immediately or at set times.

The full system scan detects but doesn't clean up threats.

Note The Security VM cannot run a scan if it is still in the Sophos Enterprise Console Unassigned group. It must be in a group to which you have applied policies.
Note The Security VM staggers scans so that the hypervisor is not placed under a high load. By default, two guest VMs are scanned at a time. Scanning a large number of guest VMs can take a considerable time.

Scan guest VMs now

To run a full scan of all the guest VMs immediately:

  1. Go to Sophos Enterprise Console and find the Security VM in the computer list.
  2. Right-click the Security VM and select Full System Scan.
    Note Alternatively, on the Actions menu, select Full System Scan.

Scan guest VMs at set times

To run a full scan of all the guest VMs at set times:

  1. Go to Sophos Enterprise Console.
  2. Create a scheduled scan, as explained in the Sophos Enterprise Console Help, in the section about configuring the anti-virus and HIPS policy.

To view details of the scan after it has been run:

In Sophos Enterprise Console, in the computer list in the lower right part of the window, double-click the Security VM to display the Computer details dialog box.