Help

Sophos Installation on Monterrey

ktelbgit
New Contributor

Posted on ‎04-04-2022 02:56 AM

Good Morning,

We have recently attempted to deploy Sophos Endpoint Manager through Jamf using the recommended configuration profiles and scripts on the Sophos website and Jamf forums.

Whilst we have found some success deploying the configuration profiles - Intel Macs using the Sophos recommended config profiles (https://community.sophos.com/intercept-x-endpoint/f/recommended-reads/116397/sophos-mac-endpoint-how...) and M1 Macs using a similar version minus the kernel extension config (as M1 doesn't support KEXT ID's), we have struggled to deploy the installation script for Sophos Cloud similar to the one on the Jamf forum (https://community.jamf.com/t5/jamf-pro/sophos-cloud-installs/td-p/197386).

Everything works perfectly, apart from the Mac requesting permissions and system privileges that the end user will actively have to click on in order to complete the Sophos download. Is there any way around this? I'm aware that Jamf has 'sudo' privileges so it shouldn't require any engagement from the user...we could add --quiet to the install script but I'm not sure that would make any difference.

Thanks in advance to anyone offering support on this painful integration!

0 Kudos
Reply
4 REPLIES 4

awoodbury
Contributor
Contributor

Posted on ‎04-04-2022 06:30 AM

Whilst Kexts have been deprecated for M1, they still use System Extensions with the same Bundle and Team IDs.

0 Kudos
Reply

SCCM
Contributor III

Posted on ‎04-06-2022 10:18 AM

what permissions is it asking for? if you have done your profiles correctly it shouldnt prompt anything. you should have a content filter, PPC profile, system extentions and the kernal extention (intel detvices only)

Reply

ktelbgit
New Contributor
In response to SCCM

Posted on ‎04-14-2022 03:00 AM

Ah, potentially missed out on the content filter... although, I haven't seen any documentation on how to configure this. Can you please share if you have available.

Everything else during the deployment is running smoothly, it's just this small issue that we ideally want resolved to improve user experience.

Thanks for your help on this @SCCM 

0 Kudos
Reply

SCCM
Contributor III
In response to ktelbgit

Posted on ‎04-14-2022 06:38 AM

@ktelbgit its on the same page your looking at: https://community.sophos.com/intercept-x-endpoint/f/recommended-reads/116397/sophos-mac-endpoint-how...
under related information mscottblakes post

SCCM_0-1649943479849.png

 

Reply