net stop 'Sophos AutoUpdate Service' The order in which the endpoint components are removed is important. A command line such as the following can be used. This is also scale-able, as I can then do as many PCs as needed without having to worry about TP. Prior to uninstalling the endpoint components, you should stop the Sophos AutoUpdate Service to prevent a potential update of the endpoint software during the removal. If the Sophos developers could highlight, what needs to be removed from registry entries and directories, I could set up a script to do this in WinPE and have the client removed quite effectively. The tool is available as both raw PowerShell. The script you talk of would be useful, yes, but there is no integration with SCCM or other tools and Sophos Central, so there is still the tedious task of getting the TP password for each device and running individually on each machine. This Sophos Removal Tool was created for system administrators who require the removal of the Sophos endpoint protection and Anti-virus software. Just as a reminder I can't start visiting remote sites to resolve the issue, I need an automated and centralised method to rectify the issue, which is why I asked what components need to be removed. Notes: There’s no ongoing update if the View updating status is grayed out. On the system tray, right-click the Sophos icon and ensure no update is in progress. Log in to the computer using an account that is a member of the local group SophosAdministrator. In my view the Sophos agent, needs to repair itself more effectively.īut dealing with the issue at hand, I did raise the issue with support and was referred to articles where the Safe Boot option is suggested. Uninstalling Sophos in Programs and Features. In some cases it would accept the password and then re-enabled TP in 60 seconds. The remaining 30%, even when remotely connecting, with TP disabled and entering the TP password from the console for that client, it simply would not uninstall or even accept the password. 70% reinstalled the agent via SCCM, no issue and I re-enabled TP on them. I disabled TP for all the clients that were out of date and simply deployed Sophos again to the said PCs. We had some broken clients, I won't mention how many but a significant amount and as a result a specific component on Sophos Central Endpoint agent was out of date. Yes, this is where the issue lies, so I'll explain a little more.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |