?
Solved

Sophos UTM Endpoint VPN

Posted on 2016-10-25
2
Medium Priority
?
149 Views
Last Modified: 2016-10-31
We use Sophos to secure our network via VPN, firewall, and Anti-virus.

We need to allow contractors to connect to our network.  We have already set policy that the contractor must have Sophos antivirus client installed on their computer (they can spin up a virtual machine if they need to) and we have set policy that all clients must be Windows 7 or higher and they must use the Sophos VPN client to connect.

Question:  When a contractor connects via Sophos VPN client, how can we determine that their computer has the antivirus installed and is up-to-date?  Also, how about patches?  

Note:  Contractor computers are NOT domain members.  They are stand-alone.

JamesNT
0
Comment
Question by:JamesNT
2 Comments
 
LVL 24

Accepted Solution

by:
Dirk Kotte earned 2000 total points
ID: 41866692
there is no option for endpoint comliance-scan within sophos VPN (IPSec or SSL).
if contractor don't need full filesystem/database access you should restrict rights for VPN-Users strongly.
we use controlled "jumphosts" to allow access for external contractors.
If only RDP or Citrix is necessary you have only 1-2 ports and nearly no risk.
1
 

Author Closing Comment

by:JamesNT
ID: 41866821
That's what I was thinking.  I'm going to attempt to push for a Remote Desktop Services Gateway this week.

James
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you try to extract and to view the contents of a Microsoft Update Standalone Package (MSU) for Windows Vista, you cannot extract the files from the MSU. Here we are going to explain how to extract those hotfix details without using any third pa…
While working, an annoying popup showing below will come and we cannot cancel or close it form the screen. The error message will come again and again.
In this Micro Tutorial viewers will learn how to use Boot Corrector from Paragon Rescue Kit Free to identify and fix the boot problems of Windows 7/8/2012R2 etc. As an example is used Windows 2012R2 which lost its active partition flag (often happen…
This Micro Tutorial will go in depth within Systems and Security in Windows 7 and will go into detail regarding Action Center, Windows Firewall, System, etc. This will be demonstrated using Windows 7 operating system.
Suggested Courses
Course of the Month14 days, 19 hours left to enroll

840 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question