Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

Add option that forces full system scans after scheduled start is missed

Hi,

we've Sophos Endpoint Security and Control 10.3 running in a very large and distributed environment (3000+ machines). Not all of our computers do run at the time we configured a scheduled scan - as there are people that e.g. work only 4 days a week. Sophos AV currently don't care - so we've a lot of machines that does not meet our compliance requirements.

Would it be possible to add an administrative option like 'Run task after scheduled start is missed'?

BTW: Such an option even exists Windows Task Scheduler - so it cant be hard to create and would surly help a lot of companies.

Cheers,
RFI

63 votes
Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)

We’ll send you updates on this idea

RFI shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

9 comments

Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)
Submitting...
  • Anonymous commented  ·   ·  Flag as inappropriate

    This is a critical feature to meet compliance for Sophos as AV for business. At least if any PC missed the scheduled scan, it should send email alerts to administrator.

  • Joseph Perry commented  ·   ·  Flag as inappropriate

    I wouldn't be surprised if most users don't realize this is happening.

    We have a fleet of laptops with no maintenance window.
    I've spent some time looking for a workaround and haven't found anything that works on a large scale. The BackgroundScanClient.exe seems to take a uuid parameter that's unique to each computer.

  • Jake Rondeau commented  ·   ·  Flag as inappropriate

    Our scans are scheduled to run overnight, and quite often we have staff members who fail to leave their computers on. We also have mobile users whose laptops aren't on all the time, so their scheduled scans almost always get missed. As an admin, I'm even guilty of this.

  • Bjorn Vanhevel commented  ·   ·  Flag as inappropriate

    Our Problem is even bigger than inconsistencies, users get declined access to the network if there computer is not scanned within the last 10 days and we only tend to do 1 full scan a week.

    The feature would help us a lot

  • Nikola commented  ·   ·  Flag as inappropriate

    Devices, which weren't on at the time of the scheduled scan, never get scanned. This results in scheduled scan inconsistencies (e.g. a device never gets scanned if it was never up at the scan time)
    We would like you to add functionality so a device gets automatically scanned when it's turned on (after the scheduled time)

  • RFI commented  ·   ·  Flag as inappropriate

    Any updates on this? Sorry, we're waiting more than 3 months now and dont even got an update so far. Sophos, what's holding you back for so long?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.