Scan guest VMs

Sophos for Virtual Environments scans files on access, that is, when they are opened and closed (if you have on-access scanning enabled in your policy).

A Security VM can also perform a full scan of all the guest VMs it manages. You can either run a scan immediately or at set times.

The full system scan detects but doesn't clean up threats.

Note The Security VM cannot run a scan if it is still in the Sophos Enterprise Console Unassigned group. It must be in a group to which you have applied policies.
Note The Security VM staggers scans so that the hypervisor is not placed under a high load. By default, two guest VMs are scanned at a time. Scanning a large number of guest VMs can take a considerable time.
  • To run a full scan of all the guest VMs immediately:
    1. Go to Sophos Enterprise Console and find the Security VM in the computer list.
    2. Right-click the Security VM and select Full System Scan.
      Tip Alternatively, on the Actions menu, select Full System Scan.
  • To run a full scan of all the guest VMs at set times:
    1. Go to Sophos Enterprise Console.
    2. Create a scheduled scan, as explained in the section about configuring the anti-virus and HIPS policy in the Sophos Enterprise Console help.
  • To view details of the scan after it has been run:
    1. In Sophos Enterprise Console, in the computer list in the lower right part of the window, double-click the Security VM to display Computer details.