# Sophos Integration

Sprinto integrates with Sophos to automate device management checks and controls. Once connected, Sprinto continuously syncs device information and encryption status to help you monitor compliance requirements.

***

### Before you begin

Ensure the following:

* You have **admin access** to your Sophos Central account.
* You have generated a **Client ID** and **Client Secret** from Sophos Central.
  * To generate your **Client ID** and **Client Secret**, follow the official [Sophos documentation](https://docs.sophos.com/central/customer/help/en-us/ManageYourProducts/GlobalSettings/APICredentials/index.html#add-credentials).
* While generating credentials, you select the **Service Principal Management** role for your integration.

***

### Permissions required

Sprinto requires the following read-only permissions:

* **User Information (email address)** – Read Only
* **List Devices** – Read Only

#### Data used by Sprinto

Sprinto syncs the following data:

* Device details
* User information
* Hard disk encryption status
* OS version

***

### How to connect Sophos to Sprinto

#### Step 1: Navigate to Sophos integration

1. Log in to the Sprinto dashboard.
2. Go to **Settings**.
3. Click **Integrations**.
4. In the **All** tab, search for **Sophos**.
5. Click **Connect** next to Sophos.

<figure><img src="https://3220032727-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEsyn5VMU6e0OyGjRtKgx%2Fuploads%2Fo0pX8DWFLtCBOwwAapPW%2FScreenshot%202026-02-13%20at%2016.45.34.png?alt=media&#x26;token=f0d20fdf-fa5e-425e-b034-2d8d0352310b" alt="" width="563"><figcaption></figcaption></figure>

A drawer opens displaying:

* Controls and checks automated
* Permissions required
* Data used by Sprinto
* Additional information

Click **Next** to proceed.

<figure><img src="https://3220032727-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEsyn5VMU6e0OyGjRtKgx%2Fuploads%2F5tRygMRjgwMmRkAlAvv7%2FScreenshot%202026-02-13%20at%2016.46.06.png?alt=media&#x26;token=6fef5d7b-43f8-4e74-8428-c6d1c488339e" alt="" width="375"><figcaption></figcaption></figure>

***

#### Step 2: Connect Sophos in Sprinto

1. Select **I have the credentials**.
2. Click **Connect Sophos**.
3. Enter your [Client ID and Client Secret](#before-you-begin)**.**
4. Click **Connect Sophos**.

<figure><img src="https://3220032727-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FEsyn5VMU6e0OyGjRtKgx%2Fuploads%2FU13gi3sHmHdqvBPhu5fI%2FScreenshot%202026-02-16%20at%2013.01.20.png?alt=media&#x26;token=85c6be5e-a2db-4c27-82e7-b4dfab929238" alt="" width="375"><figcaption></figcaption></figure>

Once validated, the integration is complete and Sprinto begins syncing device and user data automatically.

***

### What happens after integration?

* Device inventory is synced.
* Encryption and OS version checks are automated.
* Related controls and checks are continuously monitored.
* Evidence is automatically collected and updated in Sprinto.

***

### Troubleshooting

#### Invalid Client ID or Client Secret

If authentication fails:

* Ensure you copied the **Client ID** and **Client Secret** exactly as shown in Sophos.
* Confirm there are no extra spaces before or after the values.
* Verify that the credentials are active in Sophos Central.

If necessary, generate a new credential set and retry the integration.

#### Insufficient permissions error

If Sprinto cannot fetch data:

* Confirm that the **Service Principal Management** role was selected when creating the API credentials.
* Ensure your Sophos account has administrative privileges.
* Verify that the API credentials are not restricted by additional role limitations.

#### Devices or users are not syncing

If data does not appear in Sprinto:

* Check that devices are properly enrolled in Sophos Central.
* Confirm users are associated with devices.
* Allow a few minutes for the initial sync to complete.
* Refresh the integration page or re-authenticate if required.

#### Revoking and reconnecting the integration

If issues persist:

1. Disconnect Sophos from Sprinto.
2. Regenerate API credentials in Sophos Central.
3. Reconnect using the new Client ID and Client Secret.

This ensures stale or invalid credentials do not block data sync.

***

If you have any questions or concerns during the integration process, don't hesitate to reach out to Sprinto Support via the in-app chat or write to us at <support@sprinto.com>. We're here to help!