Sophos Intune

Posted on |



  • Sophos Central Endpoint: Installer command line options for Windows and Mac KB-000036839 02 3, 2021 32 people found this article helpful. Overview This knowledge base article provides information about the command line switches that can be used with the new Sophos.
  • For example, Sophos Central Windows Endpoint deployment policy. Right-click on the new GPO that you created select Edit. For details on using Microsoft Intune to deploy the Sophos Central endpoint software, please see the article Sophos Central Windows Endpoint: Deploying using Microsoft Intune.

This knowledge base article provides a high-level overview on how to use Microsoft Intune to deploy the Sophos Central Windows endpoint software. The following information could also be used as a guide when deploying the Sophos Enterprise Console (SEC) managed client.

Intune-->

Complete the following steps to integrate the Sophos Mobile Threat Defense solution with Intune.

Note

This Mobile Threat Defense vendor is not supported for unenrolled devices.

Before you begin

Before starting the process of integrating Sophos Mobile with Intune, make sure you have the following:

Sophos vs intune
  • Microsoft Intune subscription
  • Azure Active Directory admin credentials to grant the following permissions:
    • Sign in and read user profile
    • Access the directory as the signed-in user
    • Read directory data
    • Send device information to Intune
  • Admin credentials to access the Sophos Mobile admin console.

Sophos Mobile app authorization

The Sophos Mobile app authorization process follows:

  • Allow the Sophos Mobile service to communicate information related to device health state back to Intune.
  • Sophos Mobile syncs with Azure AD Enrollment Group membership to populate its device's database.
  • Allow the Sophos Mobile admin console to use Azure AD Single Sign On (SSO).
  • Allow the Sophos Mobile app to sign in using Azure AD SSO.
Sophos Intune

To set up Sophos Mobile integration

Sophos Mobile Intune

  1. Sign in to the Microsoft Endpoint Manager admin center portal, go to Tenant administration > Connectors and tokens > Mobile Threat Defense > and select Add. Handbrake for mac.

  2. On the Add Connector page, use the dropdown and select Sophos. And then select Create.

  3. Select the link Open the Sophos admin console.

  4. Sign in to the Sophos admin console with your Sophos credentials.

  5. Go to Mobile > Settings > Setup > Sophos setup.

  6. On the Sophos setup page, select the Intune MTD tab.

  7. Select Bind, and then select Yes. Sophos connects to Intune and requires you to sign in to your Intune subscription.

  8. In the Microsoft Intune authentication window, enter your Intune credentials and Accept the permissions request for Sophos Mobile Thread Defense.

  9. On the Sophos setup page, select Save to complete the configuration for Intune:

  10. When the message Successful Integration appears, integration is complete.

  11. In the Intune console, Sophos is now available.

Sophos Mac Intune

Next Steps