Skip to main content
Jamf Nation, hosted by Jamf, is the largest Apple IT management community in the world. Dialog with your fellow IT professionals, gain insight about Apple device deployments, share best practices and bounce ideas off each other. Join the conversation.

Product Resources

  • Securing the Mac OS: Full Disk Encryption using Sophos SafeGuardĀ®

    Many organizations are experiencing increased pressure to demonstrate compliance with an array of regulations which may include the U.S. Government Configuration Baseline (USGCB), Payment Card Industry Data Security Standards (PCI DSS) and Sarbanes-Oxley Act (SOX). We will describe how to automate deployment of and reporting on the Sophos SafeGuard full disk encryption product using the Casper Suite.

Upload Extension Attribute

Extension attributes are custom fields that allow you to collect almost any piece of attribute data from a computer.

Find out more about extension attributes on the extension attributes page.

Sophos - Virus Definition Date

This attribute returns the Virus Definitions Date for Sophos. This attribute template applies to Sophos (v 7.1).

Sophos - Virus Definition Date.xml (767 B)

Download

Sophos - Virus Definition Date v8

This attribute returns the Virus Definitions Date for Sophos. This attribute template applies to Sophos (v 8.0.16).

Sophos - Virus Definition Date-8.0.xml (831 B)

Download

Sophos - Virus Definition Version

This attribute returns the Virus Definitions Version for Sophos. This attribute template applies to Sophos (v 7.1).

Sophos - Virus Definition Version.xml (725 B)

Download

Sophos AV AU Primary URL

To list the primary auto update url set on the client.

Sophos_AV_Primary_Update_Server.xml (526 B)

Download

Sophos Anti-Virus Router Configuration

This is used to display the Sophos Anti-Virus router parent address configuration on a client machine

Sophos_Anti-Virus_RMS_Configuration.xml (858 B)

Download

Sophos Data File Date

This Extension Attribute will read the lastest Data File Date of Sophos By default Jamf Pro Server comes with the extension attribute "Sophos - Virus Definition Version": https://www.jamf.com/jamf-nation/third-party-products/files/172/sophos-virus-definition-version This Extension Attribute seems to be incorrect because it checks the Sophos Threat Detection Engine release date and not the virus DAT release date. I added a script that actually shows the correct date.

sophos_data_file_date.sh (512 B)

Download

Upload Package Manifest

Package manifests allow Composer to build packages from software that is already installed without taking snapshots.

Find out more about package manifests on the package manifests page.

Sophos Anti-Virus for Mac

This is a preinstalled software template for Sophos Anti-Virus. This template was tested with Sophos Anti-Virus 8.0.9 on Mac OSX 10.8.2 on 12/27/2012

Sophos Anti-Virus.composer (1.36 KB)

Download

Upload Licensed Software Template

Licensed software records in Jamf Pro let you store information about the software licensed to your organization.

Find out more about licensed software templates on the licensed software templates page.

Sophos Anti-Virus

Licensed software template for Sophos Anti-Virus.

Sophos Anti-Virus.xml (430 B)

Download

Sophos Anti-Virus Update Manager

Checks for the existence of Sophos Update Manager.app

Sophos_Anti-Virus.xml (430 B)

Download

Upload Script

Scripts can be executed on managed computers using a Policy or Jamf Remote. Most scripts also work with other management tools.

Find out more about scripts on the scripts page.

Auto Scan Removable Media

This is used with a launch daemon to run the script every time a volume is mounted This script will search if there is removable media and will automatically scan the media If there is a virus the system tries to "touch the file" which activate the SAV Quarantine Manager

SAV_Scan_Removable_Media.sh (1.60 KB)

Download

Eject Removable Media if Threat is found

This is to be used in conjunction with a launch daemon running all the time. You can get Lingon here to create the launch daemon http://sourceforge.net/projects/lingon/files/Lingon/2.1.1/

SAV_Eject_USB.sh (2.23 KB)

Download

Sophos Anti-Virus RMS Override

http://www.sophos.com/en-us/support/knowledgebase/119758.aspx Written by Tim Kimpton 09.23.2014 The Remote Management System (RMS) that deals with the communication between Sophos Anti-Virus for Mac OS X and the Sophos Enterprise Console can be configured to allow the Machine Name, Domain Name, and Computer Description to be overridden and alternative values to be used. For more information see http://www.sophos.com/en-us/support/knowledgebase/119758.aspx This script does the following 1. Checks if an override already exists and if so exits 2. Checks if the machine is bound to the domain & computer name exists in directory services 3. Writes the computer name into the override 4. Restarts the relevant Sophos Anti-Virus Services

Sophos_Anti-Virus_Override.sh (2.62 KB)

Download

Sophos Anti-Virus agent override

see http://www.sophos.com/en-us/support/knowledgebase/119758.aspx Written by Tim Kimpton 09.22.2014 There are multiple machine names that can be used within the OS X operating system; however, these can all differ and lead to some confusion. The machine name that we should use, according to Apple's documentation, is the NetBIOS name that is referenced within the com.apple.smb.server.plist file. Older versions of OS X may not contain the com.apple.smb.server.plist file; if this file cannot be found, we attempt to check the smb.plist file. Sophos Anti-Virus for OS X will check these files in this order to determine the machine name to send to Sophos Enterprise Console: The Remote Management System (RMS) that deals with the communication between Sophos Anti-Virus for Mac OS X and the Sophos Enterprise Console can be configured to allow the Machine Name, Domain Name, and Computer Description to be overridden and alternative values to be used.

Sophos_Anti-Virus_Override.sh (2.49 KB)

Download

runSophosScan.sh -- Run Sophos Anti-Virus Scan

This script will force sophos to perform a virus scan on the hard drive and will quarantine any infected files if desired. The default behavior of the script is to simply perform a scan of the drive and report back any infected files in the output of the script. Additionally, files can be quarantined if found to be infected with a virus. Please note that this script was created using the latest version of Sophos AV available at the time of the script creation (4.9). Compatibility with versions of Sophos AV created prior to and post 4.9 is unknown at this time.

runSophosScan.sh (5.68 KB)

Download

updateSophosVirusDefs.sh -- Update virus definitions for Sophos AntiVirus

This script will download the latest virus definitions for Sophos AntiVirus for mac to ensure that the latest definition set is being used whenever a Sophos scan is run. Please note that this script was created using the latest version of Sophos AV available at the time of the script creation (4.9). Compatibility with versions of Sophos AV created prior to and post 4.9 is unknown at this time.

updateSophosVirusDefs.sh (5.09 KB)

Download

Upload Managed Preference Manifest

Managed Preference (MCX) manifests allow you to enforce settings on managed computers with Jamf Pro. These files also work with Workgroup Manager.

Find out more about managed preference manifests on the managed preference manifests page.

There are no managed preference manifests for Sophos Antivirus for Mac