Steps to Add Application in Exclusion / Unblock List (Sophos Antivirus – Windows)

1. Open Sophos Endpoint Security

• On the client machine, click the Start menu.
• Search for Sophos Endpoint Agent or Sophos Endpoint Security and Control.
• Open the application.

2. Go to Settings

• In the left-hand panel, click on ‘Configure Anti-Virus and HIPS’ (or similar, depending on Sophos version).
• Navigate to ‘Exclusions’.

3. Add the Application in Exclusions

• Under the ‘Exclusions’ section, choose whether you want to exclude by:
• • File/Folder path – select the folder or .exe file of your application.
  • Process – add the application executable (e.g., workstatus).

4. Save the Changes

• Click OK or Apply.
• Confirm the changes if prompted by admin rights.

5. Verify

• Restart the application.
• Ensure the antivirus no longer blocks/quarantines it.

Additional Notes

• If Sophos is centrally managed (Sophos Central), the exclusion may need to be set from the admin console. In that case, client may not have permissions.
• If it’s locally installed Sophos Endpoint, the client can add the exclusion themselves following the above steps.
• Once added, the exclusion usually stays unless:
• • There’s a policy refresh from central Sophos console.
  • The antivirus has scheduled scans with strict override rules.

Updated on: 05/12/2025