Applies to: Sophos Home Premium and Free (Mac)
What's happening:
If running macOS 11 Big Sur , see this article first Support for macOS 11- Big Sur
On the Sophos Home dashboard, or on the Sophos Home Shield, you may have received the alert This device is vulnerable after installing/updating Sophos Home
Dashboard example:
Sophos Home Shield example:
This article provides a list of the different scenarios and causes of the alert This device is vulnerable and link to its corresponding solution.
Troubleshooting steps
If running macOS 11 Big Sur , see this article first Support for macOS 11- Big Sur
Scenario 1 - The Mac needs to be restarted
Usually, the alert is cleared after restarting the Mac and waiting for 10-15 minutes.
Scenario 2 - Real Time Protection (or other) was disabled via the Sophos Home dashboard
If protections are disabled via Sophos Home dashboard, Sophos Home will reflect that on the Shield. To check protections are enabled, follow these steps: The real-time protection is disabled.
Scenario 3 - Sophos Home needs to be allowed under Security & Privacy
macOS 11- Big Sur- refer to Support for macOS 11- Big Sur
macOS versions prior to macOS 11
First time installations may require allowing Sophos Home signed extensions to run on the Mac. Follow these steps to do so: The Sophos KEXT was not allowed on the first time installation of Sophos Home
The last 2 scenarios (4 and 5) apply only to Macs running macOS versions OLDER than macOS 11 Big Sur
Scenario 4 - The Mac doesn't have available slots to load Sophos Home
This issue occurs when the Mac runs out of virtual slots to load applications (this usually happens when virtual machines are installed, and similar software is being used). Follow these steps to correct that: There are too many applications that register virtual devices.
Scenario 5 - None of the above scenarios worked- Kexts need to be manually added
In some cases, the Sophos Home kexts need to be manually enabled. To do so, follow these steps:
Note: Click here to watch a video with the instructions.
- Boot into Recovery mode (Apple Article ht201314)
- Open the Terminal (From the menu at the top)
- Type the following command:
/usr/sbin/spctl kext-consent add 2H5GFH3774
(Please mind the space between spctl and kext, the space between consent and add, and the space between add and 2H... )
Hit Enter - Type command:
csrutil disable
Hit Enter - Reboot your Mac
- After confirming Sophos Home shield's status area is green, follow steps 1 and 2, then type the following command in the terminal:
csrutil enable - Reboot your Mac
Comments
0 comments
Article is closed for comments.