Create a scheduled scan

If you use role-based administration:

  • You must have the Policy setting - anti-virus and HIPS right to perform this task.
  • You cannot edit a policy if it is applied outside your active sub-estate.

For more information, see Managing roles and sub-estates.

To have computers scanned by Sophos Endpoint Security and Control at set times, you can create a scheduled scan.

  1. Check which anti-virus and HIPS policy is used by the group(s) of computers you want to configure.

    See Check which policies a group uses.

  2. In the Policies pane, double-click Anti-virus and HIPS.
  3. Double-click the policy you want to change.
    The Anti-Virus and HIPS Policy dialog box is displayed.
  4. In the On-demand scanning panel, under Set up and manage scheduled scans, click Add.
    The Scheduled scan settings dialog box is displayed.
  5. In the Scan name box, type a name for the scan.
  6. Under What to scan, select the check boxes for items to scan. By default, all local hard disks and UNIX mounted filesystems are scanned.
  7. Under When scan occurs, select the check boxes for the day(s) on which the scan should run.
  8. To specify the time(s) when the scan will run, click Add.
    • To change a time, select it in the Times when the scan will run list, and then click Edit.
    • To delete a time, select it in the Times when the scan will run list, and then click Remove.
Note If the scan detects components of a threat in memory, and you have not set up automatic cleanup for the scan, the scan stops and an alert is sent to Sophos Enterprise Console. This is because further scanning could enable the threat to spread. You must clean up the threat before running the scan again.

To change the scanning and cleanup settings, see the following topics: