Applies to: Sophos Home Premium and Free (Mac)
What's happening:
"This device is vulnerable" | "Computer is vulnerable" messages appear when some Sophos Home components are not loaded/properly installed. This situation should be rectified to ensure your system is protected from online threats.
The most common situations in which these messages can appear are after a Sophos Home installation/upgrade takes place, or when upgrading your macOS system. In those cases, the first step is to restart the Mac to allow it to load the new/updated components.
Additional examples of the message
On the Sophos Home dashboard, or on the Sophos Home Shield, you may have received the alert This device is vulnerable after installing/updating Sophos Home
Dashboard example:
Sophos Home Shield example:
Troubleshooting the message
Scenario 1 - The Mac needs to be restarted
Usually, the alert is cleared after restarting the Mac and waiting for 10-15 minutes. This ensures all components are updated and re-loaded.
Scenario 2 - Real Time Protection (or other) was disabled via the Sophos Home dashboard
If protections are disabled via Sophos Home dashboard, Sophos Home will reflect that on the Shield. To check protections are enabled, follow these steps: The real-time protection is disabled.
Scenario 3 - Sophos Home components need to be allowed under Security & Privacy
- Either Click the Open Security Preferences button in the above-mentioned dialog box (which will take you to step 5) or click on the Apple menu from the taskbar then select System Preferences…
- On the System Preferences window, select Security & Privacy.
- Under the "General" section, click on the padlock at the bottom left to be able to make changes.
- Ensure "App Store and identified developers" option is selected under "Allow apps downloaded from"
- Click the Allow button next to the prompt System software from developer “Sophos” was blocked from loading at the bottom of the Security & Privacy window.
Note: To make changes, you may need to click on the lock, as per the screenshot (bottom left).
(Click on the image to see it in full size)
Scenarios specific to Mac computers running old macOS versions such as 10.13, 10.14 and 10.15 (NOT applicable to macOS 11 -Big Sur)
Scenario 4 - The Mac doesn't have available slots to load Sophos Home
This occurs when the Mac runs out of virtual slots to load applications (Virtual machines software, for example, utilizes virtual slots. If there aren't any available slots, macOS cannot load additional components). Follow these steps to correct that: There are too many applications that register virtual devices.
Scenario 5 - Kernel extensions (KEXTS) need to be manually loaded
In some cases, the Sophos Home KEXTS need to be manually enabled in order to allow them to load. To do so, follow these steps:
Video steps
Step-by-step guide - Allowing KEXTS
- Boot into Recovery mode (Apple Article ht201314)
- Open the Terminal (From the menu at the top)
- Type the following command:
/usr/sbin/spctl kext-consent add 2H5GFH3774
(Please mind the space between spctl and kext, the space between consent and add, and the space between add and 2H... )
Hit Enter - Type command:
csrutil disable
Hit Enter - Reboot your Mac
- After confirming Sophos Home shield's status area is green, follow steps 1 and 2, then type the following command in the terminal:
csrutil enable - Reboot your Mac
Note: If the above scenarios do not fix your issue, follow this article: re-installing Sophos Home
Comments
0 comments
Article is closed for comments.