I am wanting to see if anyone has actually had success in including Sophos Anti-Virus in an App Layering image? I have a client with Sophos Cloud that I am doing a new master image based on App Layering and I've heard varying stories of "success" (I by success, I mean failure). In particular, I'm wanting to know which layer people have had the most success with Sophos.
The interesting thing with regards to documentation around layering of Sophos is what seems very much like contradictions. OK - stick with me here . Citrix documentation suggests Sophos goes in the OS Layer (https://docs.citrix.com/en-us/citrix-app-layering/4/layer/layer-antivirus-apps.html#sophos-cloud-all-supported-operating-systems). Citrix best practices (https://support.citrix.com/article/CTX225952) state "Don’t install applications into the OS layer. The OS layer should be as generic as possible. You cannot swap out the OS layer like you can with App Layers and Platform Layers." (surely we'd classify the Sophos agent as an application?). I was at Synergy in 2018 and went to the "Citrix App Layering: Top 10 Lessons Learned" (https://www.youtube.com/watch?v=-eQ1py3Tgd4) where the statement is made "trust me, put it in an App Layer" (around the 13 minute mark). One of the reasons was along the lines of if you change anti-virus, you don't have to create a new OS Layer, which in turn means re-creating all the Platform and App Layers.
So you can see with the variations of documentation and statements around this, as well as hearing the failures of Sophos in layering from clients, the actual decision on "What Layer?" is really hard to answer. Field success (especially documented field success) seems the most relevant in the end. So hit me with your thoughts and experiences.
Question
Matthew Gailer1709152490
Hi,
I am wanting to see if anyone has actually had success in including Sophos Anti-Virus in an App Layering image? I have a client with Sophos Cloud that I am doing a new master image based on App Layering and I've heard varying stories of "success" (I by success, I mean failure). In particular, I'm wanting to know which layer people have had the most success with Sophos.
The interesting thing with regards to documentation around layering of Sophos is what seems very much like contradictions. OK - stick with me here . Citrix documentation suggests Sophos goes in the OS Layer (https://docs.citrix.com/en-us/citrix-app-layering/4/layer/layer-antivirus-apps.html#sophos-cloud-all-supported-operating-systems). Citrix best practices (https://support.citrix.com/article/CTX225952) state "Don’t install applications into the OS layer. The OS layer should be as generic as possible. You cannot swap out the OS layer like you can with App Layers and Platform Layers." (surely we'd classify the Sophos agent as an application?). I was at Synergy in 2018 and went to the "Citrix App Layering: Top 10 Lessons Learned" (https://www.youtube.com/watch?v=-eQ1py3Tgd4) where the statement is made "trust me, put it in an App Layer" (around the 13 minute mark). One of the reasons was along the lines of if you change anti-virus, you don't have to create a new OS Layer, which in turn means re-creating all the Platform and App Layers.
So you can see with the variations of documentation and statements around this, as well as hearing the failures of Sophos in layering from clients, the actual decision on "What Layer?" is really hard to answer. Field success (especially documented field success) seems the most relevant in the end. So hit me with your thoughts and experiences.
Thanks
Matt
7 answers to this question
Recommended Posts
Archived
This topic is now archived and is closed to further replies.