Mar 08 2023 06:40 AM
We have a small percentage of high value users that we upgraded standard endpoint to Sophos Endpoint with Intercept X. For the remainder of the devices, I have begun enrolling them into MS 365 Defender. The visibility I now get for the Defender clients is excellent. What would happen if I extended the enrollment script for 365 Defender to those devices? Would Sophos disable Defender anti virus (tampering has been turned on) for those clients?
Thanks for any thoughts on this.
Mar 31 2023 04:09 AM
Sorry I don't have an answer but I am also interested to know whether we can have the advantages of device visibility in MS 365 Defender alongside a Sophos endpoint installation.
Mar 31 2023 04:26 AM
Apr 19 2023 06:41 AM
Apr 21 2023 07:08 AM - edited Apr 21 2023 07:09 AM
If Sophos is just AV, it will work fine as others have mentioned.
MDE does not support environments with other EDR software installed(or so I was told by support in the past), so you should check if Intercept X includes EDR functionality though.
I do not have any experience with Sophos, but looking at the link below it looks like EDR might be included.
https://www.sophos.com/en-us/products/endpoint-antivirus