Disable Sophos Central tamper protection

In this article we will show you how to disable tamper protection for a client temporarily or permanently. In addition, we will also show you a way to switch off the manipulation protection on all clients globally with one click.

Info: By default, tamper protection is enabled on the Sophos Endpoint Client on Sophos Central. This prevents a user from making settings on their own or uninstalling the client.

Conditions

  • Sophos Central Account
  • At least one computer with the Sophos Endpoint Client installed

Disable Tamper Protection Permanently for a Client

1. Sign in to your Sophos Central account

Sign in at https://central.sophos.com Admin panel.

2. Select a computer

Next, you can use the Sophos Central Admin to open the properties of the computer on which you want to disable tamper protection for the Sophos Endpoint Client. To do this, click on the menu item Endpoint Protection on the left-hand side of the Sidebar and then on Computer. Select the correct computer from the list and click on the name of the device to display its properties.

3. Deactivate Tamper Protection

In the lower area you will now find the settings of Tamper Protection. Click on Disable Tamper Protection to permanently remove the protection on this computer.

Permanently disable tamper protection

Note: It may take a few minutes to synchronise the settings with the Sophos Endpoint Client.

Disable tamper protection temporarily for a client (Windows)

We recommend that you do not permanently deactivate tamper protection if possible. In most cases, it is only necessary to suspend them temporarily. In the following steps we will show you how to do this.

1. Sign in to your Sophos Central account

Sign in at https://central.sophos.com Sophos Central Admin.

2. Choose a computer

Next, you can use the Sophos Central Admin to access the properties of the computer on which you want to disable tamper protection for the Sophos Endpoint Client. To do this, click on the menu item Endpoint Protection on the left-hand side of the Sidebar and then on Computer. Select the correct computer from the list and click on the name of the device to display its properties.

3. Copy Tamper Protection password

In the lower area you will now find the settings of Tamper Protection. Click on ‘View details’ and use the Show Password option to display the current password. Write down this password to remove the Tamper Protection on the client in the next step.

Show tamper protection password

4. Log in as admin with the tamper protection password

On the Windows computer, open the Sophos Endpoint Client and click on’ admin login’ in the upper right-hand corner. Then enter the password you have written down before and confirm with Login. A new menu item Settings will appear.

Sophos Endpoint Client - Admin-Login

5. Deactivate Tamper Protection

In the settings, uncheck Sophos Central policy disabled for up to 4 hours to fix the problem and then turn off tamper protection under User control.

Deactivate Tamper Protection

Deactivate Tamper Protection permanently for all clients

1. Sign in to your Sophos Central account

Sign in at https://central.sophos.com Sophos Central Admin.

2. Deactivate manipulation protection globally

Click in the Sidebar on the menu option Global Settings. Under the section General Settings you will find the point Tamper Protection. If you now access these settings, you can deactivate the toggle protection on all your clients by clicking on the Toggle button.

Disable tamper protection globally on all clients