Sophos Home introduced macOS 15 Sequoia Support with version 10.9.1 (release notes here).
Using versions earlier than 10.9.1 is not supported and will result in compromised protection.
What's working
- New Installations on Sequoia with Sophos Home 10.9.1
- Upgrading to Sequoia after installing Sophos Home 10.9.1
- Installation video: Click to Open!
Known Issues
Allow "SophosComponent" to find devices on local networks popup
- This is an example image, the component name might vary:
- Allow "SophosUpdater" to find devices on local networks?
Apple has implemented a new permissions trigger. When a process tries to access a local IP address, for example, local DNS, File Share (SMB), or web server, the OS will ask the user whether to let the process discover local network devices. This must be turned on to allow the Sophos Endpoint to fully protect the device.
Depending on the type of request and protections involved, several different Sophos processes may trigger this. These include SophosInstaller, SophosMCSAgentD, SophosConfigD, SophosEventMonitor, SophosUpdater, and SophosScanD.
Currently, Apple does not provide any method to pre-approve these requests.
Workaround: Click Allow when presented with these prompts.
Known Issues when upgrading to macOS 15 Sequoia PRIOR to upgrading Sophos Home to 10.9.1
This process will result in compromised protection, and several issues. Consider reinstalling Sophos Home version 10.9.1 to address them, or follow the below listed troubleshooting steps.
Updates may fail/ get stuck due to insufficient permissions
-
Updates may fail due to insufficient permissions
- Users updating to Sequoia will encounter problems with permissions if they haven't granted Full Disk Access permissions to SophosUpdater
- Workaround: Add SophosUpdater to Full Disk Access
- System Settings > Full Disk Access
- Click the + Symbol
- Select your Mac's HD
- Search SophosUpdater and add it to the list
- Restart the Mac
Check if your Mac is impacted
- Click on the Sophos Home Shield>...>Check for updates.
- Click About to see the installed version.
- See the Release Notes to find the latest releases.
- If the version does not match the latest version, and updating does not work or it gets stuck, you are likely impacted.
Alternatively, you can use the terminal to run the following command in a terminal:
sudo log show --predicate "subsystem == 'com.sophos.macendpoint'" --last 1d | grep -i 'Error renaming Installer directory'
- Hit Enter and type your Mac's password *(you will not see it while you type), then hit Enter again
- If there are any returns, you are impacted by this situation.
- If nothing is returned, you are not impacted by the problem.
A popup appears asking for permissions for SophosUpdater to discover devices on your network
-
A popup appears asking for permissions for SophosUpdater to discover devices on your network
-
- Sequoia includes a "Local Network" category in its "Privacy & Security" settings. If a program is not listed there, it no longer is allowed access to the local network.
-
- Workaround: Add SophosUpdater to Local Network
-
-
- Hit Allow
- Navigate to Privacy & Security > Local Network and ensure SophosUpdater slider is enabled
-
Older Sophos Home UI doesn’t point to the correct place for the Allow/Details button
-
Sequoia’s Privacy and Security settings have been updated. If you installed it before upgrading Sophos Home to 10.9.1 , you will need to enable System Extensions under Login items.
- Impacts new installations on Sequoia using older installers of Sophos Home (prior to 10.9.1)
-
Workaround: Manually enable the Sophos Home Extensions in Login Items
- Navigate to System Settings > Login Items & Extensions
- Locate Endpoint Security Extensions com.sophos.endpoint.scanextension
- Click on the "i" symbol, and enable the slider (Mac's password required)
- Next, locate Network Extensions, networkextension
- Click on the "i" symbol, and enable the slider (Mac's password required)
- Click Allow on the network popup
- Wait a few seconds and the Sophos Home Shield should update and allow you to interact with the product.