It took a little time to get this figured out with the help of both vendors, but we finally got it working.
<AntivirusInfo Name='Sophos Intercept X' IsPortableSoftware='true' ExecutableFilePath='%ProgramFiles%\Sophos\Endpoint Defense\SophosInterceptXCLI.exe' CommandLineParameters='scan --noui %Path%' RegPath='' ServiceName='' ThreatExistsRegEx='[dD]etections(: )*[1-9][0-9]*' IsParallelScanAvailable='false'>
<ExitCodes>
<ExitCode Type='Success' Description='No threats detected'>0</ExitCode>
<ExitCode Type='Error' Description='Error during command handling'>1</ExitCode>
<ExitCode Type='Error' Description='Unexpected error during CLI setup'>2</ExitCode>
</ExitCodes>
</AntivirusInfo>
-
- Enthusiast
- Posts: 99
- Liked: 12 times
- Joined: Mar 06, 2013 4:12 pm
- Contact:
-
- VP, Product Management
- Posts: 7154
- Liked: 1535 times
- Joined: May 04, 2011 8:36 am
- Full Name: Andreas Neufert
- Location: Germany
- Contact:
Re: Antiviruses.xml for Sophos Intercept X
Thanks for sharing this with the community.
-
- Enthusiast
- Posts: 45
- Liked: 12 times
- Joined: Jun 22, 2020 1:08 pm
- Full Name: David Thomson
- Contact:
Re: Antiviruses.xml for Sophos Intercept X
Thanks guitarfish.
Tested and working on SureBackup after the code was inserted between:
<Antiviruses>
and
</Antiviruses>
Tested and working on SureBackup after the code was inserted between:
<Antiviruses>
and
</Antiviruses>
-
- Novice
- Posts: 4
- Liked: never
- Joined: Jan 25, 2024 11:25 am
- Full Name: Clair Potts-Waller
- Contact:
Re: Antiviruses.xml for Sophos Intercept X
I am hoping that someone else has a similar issue to us.
<Antiviruses>
<AntivirusInfo Name='Sophos Intercept X' IsPortableSoftware='true' ExecutableFilePath='%ProgramFiles%\Sophos\Endpoint Defense\SophosInterceptXCLI.exe' CommandLineParameters='scan --noui %Path%' RegPath='' ServiceName='' ThreatExistsRegEx='[dD]etections(: )*[1-9][0-9]*' IsParallelScanAvailable='false'>
<ExitCodes>
<ExitCode Type='Success' Description='No threats detected'>0</ExitCode>
<ExitCode Type='Error' Description='Error during command handling'>1</ExitCode>
<ExitCode Type='Error' Description='Unexpected error during CLI setup'>2</ExitCode>
</ExitCodes>
</AntivirusInfo>
We are running the same AV on SureBackup but the AV software cannot be found by the job. We are using the same code as above but the job almost instantly fails with unable to find antivirus software.
We are in touch with both Veeam and Sophos support and have tried many iterations of the .XML but still no luck.
Anyone else in this predicament?
Thanks.
<Antiviruses>
<AntivirusInfo Name='Sophos Intercept X' IsPortableSoftware='true' ExecutableFilePath='%ProgramFiles%\Sophos\Endpoint Defense\SophosInterceptXCLI.exe' CommandLineParameters='scan --noui %Path%' RegPath='' ServiceName='' ThreatExistsRegEx='[dD]etections(: )*[1-9][0-9]*' IsParallelScanAvailable='false'>
<ExitCodes>
<ExitCode Type='Success' Description='No threats detected'>0</ExitCode>
<ExitCode Type='Error' Description='Error during command handling'>1</ExitCode>
<ExitCode Type='Error' Description='Unexpected error during CLI setup'>2</ExitCode>
</ExitCodes>
</AntivirusInfo>
We are running the same AV on SureBackup but the AV software cannot be found by the job. We are using the same code as above but the job almost instantly fails with unable to find antivirus software.
We are in touch with both Veeam and Sophos support and have tried many iterations of the .XML but still no luck.
Anyone else in this predicament?
Thanks.
-
- Enthusiast
- Posts: 45
- Liked: 12 times
- Joined: Jun 22, 2020 1:08 pm
- Full Name: David Thomson
- Contact:
Re: Antiviruses.xml for Sophos Intercept X
I just tested my setup and it is working.
A couple of things - the code you posted is missing the closing </Antiviruses>
I took out all the other definitions, so my whole xml file looks like this:
<Antiviruses>
<AntivirusInfo Name='Sophos Intercept X' IsPortableSoftware='true' ExecutableFilePath='%ProgramFiles%\Sophos\Endpoint Defense\SophosInterceptXCLI.exe' CommandLineParameters='scan --noui %Path%' RegPath='' ServiceName='' ThreatExistsRegEx='[dD]etections(: )*[1-9][0-9]*' IsParallelScanAvailable='false'>
<ExitCodes>
<ExitCode Type='Success' Description='No threats detected'>0</ExitCode>
<ExitCode Type='Error' Description='Error during command handling'>1</ExitCode>
<ExitCode Type='Error' Description='Unexpected error during CLI setup'>2</ExitCode>
</ExitCodes>
</AntivirusInfo>
</Antiviruses>
The other thing - assuming the executable SophosInterceptXCLI.exe visible at that location, could there be a permissions issue? You could try opening a command prompt and dropping the .exe file into it - you should get a lsit of the commands that it uses.
A couple of things - the code you posted is missing the closing </Antiviruses>
I took out all the other definitions, so my whole xml file looks like this:
<Antiviruses>
<AntivirusInfo Name='Sophos Intercept X' IsPortableSoftware='true' ExecutableFilePath='%ProgramFiles%\Sophos\Endpoint Defense\SophosInterceptXCLI.exe' CommandLineParameters='scan --noui %Path%' RegPath='' ServiceName='' ThreatExistsRegEx='[dD]etections(: )*[1-9][0-9]*' IsParallelScanAvailable='false'>
<ExitCodes>
<ExitCode Type='Success' Description='No threats detected'>0</ExitCode>
<ExitCode Type='Error' Description='Error during command handling'>1</ExitCode>
<ExitCode Type='Error' Description='Unexpected error during CLI setup'>2</ExitCode>
</ExitCodes>
</AntivirusInfo>
</Antiviruses>
The other thing - assuming the executable SophosInterceptXCLI.exe visible at that location, could there be a permissions issue? You could try opening a command prompt and dropping the .exe file into it - you should get a lsit of the commands that it uses.
Who is online
Users browsing this forum: Google [Bot] and 65 guests