Slide 1

Small Business Edition 4 C707 Technical overview

Slide 2

Prerequisites Prior to taking this training you should be able to setup a Windows server with Windows workstations in a production environment

Slide 3

3 Course objectives By completing this training you will be able to: qualify the main system requirements describe the solution architecture as well as the installation and management tasks to a technical audience highlight the differences with Sophos Endpoint Security and Control 9 list additional Sophos online resources

Slide 4

4 Agenda Solution components Solution architecture System requirements and deployment Management from Sophos Control Center Management at the endpoint Endpoint Security & Control 9 Online resources SBE Security Suite SBE Computer Suite SBE Anti-Virus YYY YYY YYY YY YYY YYY YY Y Management server Remote console Windows 2008 (32 bit)yy Windows 2008 (64bit)yy Windows 2003 SP1+ (32 bit)yy Windows 2003 SP1+ (64 bit)yy Windows 2000 SP4yy Widows Vista (32/64bit)y*y Windows XP SP1a+ (32/64bit)y*y.Net framework 2.0 SP1y SQL 2005 Expressy (default DB)

Slide 5

Small Business Edition 4 Solution components

Slide 6

Section objectives Upon completion of this section you will be able to identify which components are part of: Sophos Small Business Security suite Sophos Small Business Computer security Sophos Small Business Anti-Virus

Slide 7

Solution components Components SBE Security Suite SBE Computer Suite SBE Anti-Virus Sophos Control Center YYY Endpoint Security and Control for Windows YYY Application Control YYY Device Control YY Sophos Anti-Virus for Windows 98se YYY Sophos Anti-Virus for Macintosh YYY Sophos Client Firewall for Windows YY PureMessage for Microsoft Exchange Y SafeGuard PrivateCrypto YYY SafeGuard PrivateDisk YY PureMessage and SafeGuard are covered in a separate training

Slide 8

Small Business Edition 4 Solution architecture

Slide 9

Section objectives Upon completion of this section you will be able to: list the components that comprise the solution describe each of the components with reference to the product architecture Section agenda SophosLabs Updating Management

Slide 10

SophosLabs Anti-Malware (Viruses, worms, trojans, rootkits & spywares) Anti-Adware HIPS Application control Anti-Spam URL risk classification Genotype (detects up to 85% of new malware)

Slide 11

Central installation directories \\ \SophosUpdate\CIDs Sophos Control Center

Slide 12

Sophos AutoUpdate 12

Slide 13

Find and populate endpoints Deploy Configure the client software Monitor the network Take actions Generate reports and alerts Store all data in SQL server database Sophos Control Center 13

Slide 14

Client side components Sophos Anti-Virus Sophos Endpoint Security and Control client Sophos Client FireWall Sophos AutoUpdate Sophos RMS agent

Slide 15

Communication overview 15 Message router Agent Sophos Anti-Virus Client Firewall AutoUpdate Message router Management server Control Center Client side Server side Console RMS SCC database Sophos Update Manager COM

Slide 16

Section review What are the main roles of: Sophos Endpoint Security and Control client? Sophos Client-Firewall? Sophos Console Center? RMS? CIDs? Sophos AutoUpdate? SophosLabs? 16

Slide 17

Small Business Edition 4 System requirements and deployment

Slide 18

Section objectives Upon completion of this section you will be able to: qualify the main system requirements for the management software components and endpoint software components list the main steps of Sophos Control Center deployment list the main steps involved in a typical endpoint deployment

Slide 19

Sophos Control Center 19 *Windows XP, Vista, 7 and 2000 pro have performance limitations, especially with CIDs Management server Remote console Windows SBS 2000/2003/2008/2011yy Windows 2008 R2 (64 bit)yy Windows 2008 (32 bit)yy Windows 2008 (64bit)yy Windows 2003 SP1+ (32 bit)yy Windows 2003 SP1+ (64 bit)yy Windows 2000 SP4yy Windows Vista and 7 (32/64bit)y*y Windows XP SP1a+ (32/64bit)y*y.Net framework 2.0 SP1y SQL 2005 Expressy (default DB)

Slide 20

Endpoint client 20 Sophos Anti-Virus Client Firewall Windows 2008 R2 (64 bit)y Windows 2008 (32/64 bit)y Windows 2003 (32/64 bit)y Windows 2000 server SP3+y Windows 2000 pro SP3+yy Windows 7 (32 bit)yy Windows 7 (64 bit)y Widows Vista (32 bit)yy Widows Vista (64 bit)y Windows XP SP1a+ (32 bit)yy Windows XP SP1a+ (64 bit)y Windows 98sey Mac OS 10.4, 10.5, 10.6y http://www.sophos.com/products/all-sysreqs.htmlhttp://www.sophos.com/products/all-sysreqs.html for more details

Slide 21

Software lifecycle 21

Slide 22

Installation of Sophos Control Center Main steps: Installation of Microsoft.Net Framework and Msxml Complete setup Optional feedback to Sophos Software installation incl. SQL Express 2005 and creation of SophosUpdateMgr Server restart Sophos download account Selection of client platforms Download of client software

Slide 23

Upgrades from SCC version 2 Read the upgrade guide Upgrade of Sophos Control Center is automatic Upgrade of the endpoint client is automatic on Windows 2000/XP/2003/Vista/2008/7 Upgrade requires to run setup on Windows 98 and Macintosh

Slide 24

Typical steps for endpoint deployment Protect new computers Windows user account (must be valid on all computers) Search & select computers Select features Deploy via task scheduler See startup guide for details

Slide 25

Manual installation When installation from the console fails For Windows 98 and Macintosh Run setup from \\servername\SophosUpdate\CIDS

Slide 26

Competitor Removal Tool (CRT) detects 3rd party anti-virus detects 3rd party firewalls (except Windows and VPN clients) stops installation upon detection optionally removes 3rd party security software can be customized by Sophos Run avremote.exe to test

Slide 27

Section review List the operating systems supported by Sophos Control Center 4 Sophos Anti-Virus Sophos Client Firewall List 2 cases which require a manual installation Where can you find more details on how to prepare your network? 27

Slide 28

Small Business Edition 4 Management from Sophos Control Center

Slide 29

Section objectives Upon completion of this section you will be able to describe the main management tasks which can be completed from Sophos Control Center

Slide 30

Section agenda Central configuration Configure scanning Configure updating Configure firewall Configure application control Configure device control Dashboard and alerts Smart views Resolve alerts and errors Event viewers Reports

Slide 31

Central configuration

Slide 32

Configure scanning

Slide 33

Configure scanning (continued) Recommended steps: Detect and alert only Authorize unwanted detections Block (Block may require to test installation of new applications)

Slide 34

Configure Updating

Slide 35

Configure Firewall Monitor operational mode: Easily create rules

Slide 36

Configure application control

Slide 37

Configure device control

Slide 38

Dashboard and alerts 38

Slide 39

Smart views 39

Slide 40

Resolve alerts and errors 40

Slide 41

Event viewers

Slide 42

Event viewers (continued)

Slide 43

Slide 44

Reports

Slide 45

Section review What are the main roles of: Event viewers Smart views Dashboard Device control Application control Authorization Manager Where can you acknowledge and delete alerts? Where can you see which users have attached an Ipod to their corporate computer? How can you set a separate configuration for one server? 45

Slide 46

Small Business Edition 4 Management at the endpoint

Slide 47

Section objectives Upon completion of this section you will be able to: describe the main management tasks which can be completed at the endpoint describe which features are available on each supported platform Section agenda End user experience on Windows End user experience on Macintosh Management of threats at the endpoint Features by platform

Slide 48

End user experience on Windows Installing or updating Client installed Message for user Failing to update

Slide 49

End user experience on Windows (continued)

Slide 50

End user experience on Macintosh

Slide 51

Management of threats at the endpoint User alerts Automatic clean up Quarantine manager (Windows) Command line scanner (all platforms) Sophos Bootable Anti-Virus CD Further instructions and tools from the website 51

Slide 52

Managed by SCC On- access Scheduled scan Adware/ PUAsHIPS App/Dev/ Ctrl SAV 9.x for Windows 2000+Yes SAV 4.x for Windows 98Yes SAV 7.x for MacintoshYes Via cron Features by platform 52 April 2011

Slide 53

Section review How can you stop Windows administrators from modifying the Sophos Endpoint Security and Control clients configuration? List 5 ways to handle virus threats from Sophos Control Center and at the endpoint List 4 features of Endpoint Security and Control not available on Macintosh 53

Slide 54

Small Business Edition 4 Sophos Endpoint Security and Control 9

Slide 55

Section objectives Upon completion of this section you will be able to: List the main differences between Sophos Small Business Edition 4 Sophos Endpoint Security and Control 9

Slide 56

Sophos Enterprise Console

Slide 57

Endpoint Security and Control Management features Endpoint Security and Control 9.7 Small Business Computer Security v4 Malware/Spyware/Adware protection YY HIPS YY Sophos Client Firewall YY Device Control YY Application Control YY Data Control Y Tamper Protection Y Event Viewers YY Competitive removal tool YY Multiple SUM and CID installations Y Role based administration Y Live Anti-Virus and Live URL filtering Y Sophos NAC Y

Slide 58

* Management limited to 10 computers or less on Windows XP/Vista Endpoint Security and Control Management server platform support Endpoint Security and Control 9.7 Small Business Computer Security v4 Windows 2000 Y Windows SBS 2000/2003/2008/2011 Y Windows 2003/2008/2008 R2 (32-64 bits) YY Windows 7* (32 and 64 bits) YY SQL Express 2005 YY SQL Express 2008/R2 Y SQL Server 2005/2008 Y SUM running on Mac OS X Y

Slide 59

Endpoint Security and Control Endpoint platform support Endpoint Security and Control 9.7 Small Business Computer Security v4 Windows 2000 YY Windows XP/2003/Vista/2008/R2/7 (32-64 bits) YY Mac OS X YY Windows 2008 core Y Windows Mobile Y UNIX/Linux Y Netware/OpenVMS Y NetApp ONTAP/EMC Celerra/Sun Y

Slide 60

Section review List 5 operating systems only supported by Sophos Endpoint Security and Control List 5 features only available on Endpoint Security and Control 60

Slide 61

Small Business Edition 4 Online resources

Slide 62

62 Section objectives Upon completion of this section you will be able to: list 5 types of knowledgebase articles available from Sophos list 3 resources to help customers with upgrades highlight the main resources available in the support section and in the security section of the Sophos website find product trials and explain how to convert trials into full product installations

Slide 63

63 Online knowledgebase Rollout and configuration best practice Advanced configuration Disaster recovery planning Significant files and registry keys Troubleshooting http://www.sophos.com/support

Slide 64

Product upgrades Email notification http://www.sophos.com/security/notifications Software lifecyle http://www.sophos.com/support/lifecycle Upgrade guides http://www.sophos.com/support/docs

Slide 65

Support section Online support Sophos technical support 65

Slide 66

Security sections

Slide 67

Product trial 67

Slide 68

Section review Which section of Sophos website hosts the online knowledgebase? List 5 types of articles available in the knowledgebase List 3 resources available for upgrades List 3 resources available on the security section of the website How can you convert a trial into a full product version? 68

Slide 69

Small Business Edition 4 End

Slide 70

70 Feedback and assessment You can now log into your account and take the online assessment! Certificate of Achievement Sophocles Biziki Get Certified! Feedback to: educationrequests@sophos.com has achieved the level of Trusted Sales Engineer for Sophos Small Business Edition 4