On the Endpoint Protection > Computer Management > Global tab you can enable or disable endpoint protection.
To enable endpoint protection, do the following:
On the Global tab, enable endpoint protection.
Click the toggle switch.
The toggle switch turns amber and some fields with your organization details become visible.
Enter your organization details.
By default the settings from the Management > System Settings > Organizational tab is used.
Optionally, configure a parent proxy:
If your Sophos UTM does not have direct HTTP internet access, Endpoint Protection can use a proxy server to reach Sophos LiveConnect. Select Use a parent proxy and enter the host and port if necessary.
Click Activate Endpoint Protection.
The toggle switch turns green and endpoint protection is activated.To cancel the configuration, click the amber colored toggle switch.
On the Deploy Agent page you can now continue by deploying an endpoint protection installation package to computers to be monitored.
Note – When using endpoint protection, we recommend to enable the Force caching for Sophos Endpoint updates feature on the Web Protection > Filtering Options > Misc tab, section Web Caching, to prevent uplink saturation when endpoints download data from the update servers in the Internet.
Note – You can configure alerts for endpoint virus detection under Management > Notifications > Notifications tab, section Endpoint.
Note – If the Web Filter is activated and works in transparent mode, additional settings are necessary to ensure that endpoints can correctly use endpoint protection: As soon as endpoint protection is enabled, Sophos UTM automatically creates a DNS group named Sophos LiveConnect. Add this DNS group to the Skip transparent mode destination hosts/nets box on the Web Protection > Filtering Options > Misc tab.
To disable endpoint protection, do the following:
On the Global tab, disable endpoint protection.
Click the toggle switch.
The toggle switch turns amber and two options are available.
Select whether you want to delete your endpoint data.
Keep ALL data: Use this option if you want to temporarily disable endpoint protection. Your endpoint settings will be preserved. When enabling the feature again, the previously installed endpoints will automatically connect again and all defined policies will be available.
Delete ALL data: Use this option if you want to reset all endpoint settings and start from scratch. All connections to endpoints and all policy settings will be deleted. After enabling the feature again, deploy new installation packages to the endpoints for them to get the new registration data (see section Computer Management > Advanced).
Click Disable Endpoint Protection.
The toggle switch turns gray and endpoint protection is disabled.
|© 2019 Sophos Limited
|Sophos UTM 9.600