{"id":3866,"date":"2021-10-15T12:31:25","date_gmt":"2021-10-15T10:31:25","guid":{"rendered":"https:\/\/partnernews.sophos.com\/en-us\/?p=3866"},"modified":"2021-10-15T12:31:25","modified_gmt":"2021-10-15T10:31:25","slug":"enabling-the-sophos-data-lake-for-mac","status":"publish","type":"post","link":"https:\/\/partnernews.sophos.com\/en-us\/2021\/10\/products\/enabling-the-sophos-data-lake-for-mac\/","title":{"rendered":"Enabling the Sophos Data Lake for Mac"},"content":{"rendered":"<p>On October 21, we plan to start to enable the Sophos Data Lake for all Mac customers with an Intercept X Advanced with XDR license that have enabled Endpoint Data Lake uploads. This means that Mac devices will store up to 30 days of data in the data lake which can be queried even if the device is currently offline.<\/p>\n<p>Customers don\u2019t need to take any action unless they wish to exclude devices from uploading to the data lake, or have previously excluded devices and now want them to upload to the data lake.<\/p>\n<p><strong>How to enable or disable Data Lake uploads:<br \/>\n<\/strong>In the Sophos Central console select \u2018Global Settings\u2019 then under Endpoint Protection select the \u2018Data Lake uploads\u2019 setting and turn on\/off the &#8216;Upload to the Data Lake&#8217; toggle. From the settings page you can also exclude specific devices from sending data to the Sophos Data Lake if you wish.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"alignnone wp-image-3867 size-full\" src=\"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2021\/10\/image001.png\" alt=\"\" width=\"925\" height=\"700\" srcset=\"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2021\/10\/image001.png 925w, https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2021\/10\/image001.png?resize=300,227 300w, https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2021\/10\/image001.png?resize=768,581 768w\" sizes=\"auto, (max-width: 925px) 100vw, 925px\" \/><\/p>\n<p><strong>Joining the Detections and Investigations early access program<br \/>\n<\/strong>Customers that are uploading Mac data to the data lake can benefit from the new Detections dashboard that provides a prioritized list of suspicious items ranked on a 1-10 scale of risk. It makes it easy for admins to identify and focus on critical areas. <a href=\"https:\/\/partnernews.sophos.com\/en-us\/2021\/10\/products\/sophos-xdr-detections-and-investigations-early-access-program-now-open\/\">Learn more<\/a> about the early access program.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Mac customers with Intercept X Advanced with XDR can query up to 30 days of data stored in the Sophos Data Lake.<\/p>\n","protected":false},"author":56,"featured_media":3000003412,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"advanced_seo_description":"","jetpack_seo_html_title":"","jetpack_seo_noindex":false,"_jetpack_memberships_contains_paid_content":false,"footnotes":""},"categories":[2],"tags":[30,147],"coauthors":[61],"class_list":["post-3866","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-products","tag-intercept-x","tag-sophos-xdr"],"jetpack_featured_media_url":"https:\/\/partnernews.sophos.com\/en-us\/wp-content\/uploads\/sites\/3\/2021\/07\/featured-image-sophos-xdr-app-icon-1600x960px.png","jetpack_sharing_enabled":true,"_links":{"self":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts\/3866","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/users\/56"}],"replies":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/comments?post=3866"}],"version-history":[{"count":2,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts\/3866\/revisions"}],"predecessor-version":[{"id":3877,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/posts\/3866\/revisions\/3877"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/"}],"wp:attachment":[{"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/media?parent=3866"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/categories?post=3866"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/tags?post=3866"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/partnernews.sophos.com\/en-us\/wp-json\/wp\/v2\/coauthors?post=3866"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}