Enable Tamper Protection at the Group Policy Level, not just Globally
SUBJECT: Tamper Protection application by organizational policy (rather than globally)
Currently, tamper protection can only be enabled or disabled at the global level. But what happens if I want to uninstall Sophos from a subset of computers? And what happens if I want to do this efficiently, by using our Remote Patch Management software to push the uinstaller and script?
With the current Sophos setup, you'd have to go to each computer individually, enter a unique TP code, and uninstall. Or you would need to disable tamper protection for the entire organization -opening up a gaping security hole-, wait for the change to push, complete the uninstallation from the targeted subset using our Remote Patch Management tools, then re-enable tamper protection.
I would like for Sophos to either:
1) move Tamper Protection from a global setting to an org-policy level setting, or
2) allow creation of a single Tamper Protection code that can be deployed across the entire organization, so that we can bake it into our uninstaller scripts that are pushed through our Remote Patch Management solution.
President, Smart Sourced IT
+1 (415) 483-1700