How strong is Sophos for Mac/OSx
Sophos Endpoint Configuration and Installation for MacOS Intune (Compelte Guide)
How to download import file for Sophos connect for Mac OS?
Malwarebytes Mac or Sophos Antivirus, which is best?
Is Sophos a good antivirus for Mac?
Is Sophos safe for Mac?
Is Sophos slowing down my computer?
Videos
I am wondering how strong is Sophos for Mac.
When I look at the product features page there are missing checkmarks on the Mac column.
Has anyone here used Sophos for Mac? Does it offer a SOC, for example?
I'm not sure if this is the right place to post it, but I will share my accomplishments here, please move the post if goes against Reddit policy.
Referring to this old post: https://www.reddit.com/r/Intune/comments/17fdqw2/deploy_script_for_sophos_mac_sonoma/
I found out how to deploy The installation script for Sophos Endpoint for MacOS and the configuration files.
Step 1 - Preparing Sophos Installer / URL
On a Mac PC Go to Sophos Central -> Devices -> Installers -> and "Download Complete MacOS Installer"
open Finder and navigate to Download Right-click on the file "SophosInstall.zip" and choose "Get Info" go down to "More Info" and expand it. Here are two URLs copy the one starting with "https://api-cloudstation-eu...." and save it for later.
Step 2 - Preparing Mobileconfig
Double-click the file "SophosInstall.zip" and open the new folder "SophosInstall" -> Deployment Tools. Depending on your Sophos Setup choose either "Sophos Endpoint" or "Sophos Endpoint and ZTNA"
Depending on the MacOS version open the file with text editor that suits your setup, fx "Sequoia"
Delete everything before "<?xml version="1.0" encoding="UTF-8"?>" at the top, and remove everything after "</plist>" in the bottom of the file then save the file
Step 3 - Sophos Endpoint Installing Script
Open a blank Text editor and copy -> paste the script below
NOTE! in the section with https://api-cloudstation.... here you need to paste your URL that we found in step 1
Save the script as .sh file
Sophos Endpoint Install Script#!/usr/bin/env bash
# Directory where the installer will be downloaded
SOPHOS_DIR="/Users/Shared/Sophos_Install"
# URL for the Sophos Installer from Sophos Central
SOPHOS_URL="https://api-cloudstation-eu...YOUR URL!....zip"
# Create the directory if it doesn't exist
mkdir -p "$SOPHOS_DIR"
# Change to the directory
cd "$SOPHOS_DIR"
# Download the Sophos installer
curl -L -O "$SOPHOS_URL"
# Unzip the installer package
unzip -q SophosInstall.zip
# Make the necessary files executable
chmod +x "$SOPHOS_DIR/Sophos Installer.app/Contents/MacOS/Sophos Installer"
chmod +x "$SOPHOS_DIR/Sophos Installer.app/Contents/MacOS/tools/com.sophos.bootstrap.helper*"*
# Run the installer with elevated privileges (no user interaction)
sudo "$SOPHOS_DIR/Sophos Installer.app/Contents/MacOS/Sophos Installer" --quiet
# Clean up the installation files
rm -rf "$SOPHOS_DIR"
# Exit the script with a success status
exit 0
Step 4 - Intune Package Mobileconfig
Navigate to Microsoft Intune with Admin account, then go to Devices -> macOS -> Configuration -> Create -> New Policy -> Templates -> Custom -> Create
Name the Installer Script fx. "Sophos Endpoint and ZTNA Sequoia v3.0 mobileconfig"
Configuration profile file -> Navigate to the config file from step 2 and assign to Mac Device group
Step 5 - Intune Package Sophos Endpoint Script
Navigate to Microsoft Intune with Admin account, then go to Devices -> macOS -> Scripts -> Add and name the Script Press Upload the script and choose script from Step 3
Run script as signed-in user -> NO
The rest is up to you. The script in step 3 will check if Sophos is already installed at the start of the script!
Assign the script to a MacOS Device Group
DONE! Be sure that your MacBooks are enrolled to Intune and compliant otherwise, this won't work!