Legacy operating systems that have reached end-of-support by the platform vendor often lack security features and updates that are present in newer systems, making them targets for exploitation by adversaries. However, organizations within industries such as manufacturing and healthcare often need to run endpoints with these operating systems for specialized systems, including machinery and medical devices.

Endpoints in operational technology (OT) environments can be difficult and prohibitively expensive to upgrade or replace, resulting in devices being left unsecured or requiring additional security solutions and mitigations.

To help you meet this need for your customers, we have introduced Sophos Endpoint for Legacy Platforms — a new add-on providing comprehensive security for a range of Windows and Linux endpoint and server operating systems that extend beyond the standard end-of-support dates provided by platform vendors.

 

Customer benefits

• Simplify deployment and management of endpoint security across all devices.
  Security solutions that limit support to modern operating systems drive organizations to deploy separate solutions for legacy and out of support systems, introducing a management burden on IT and security teams. Sophos Endpoint customers can benefit from industry-leading security for both legacy and modern platforms in a single platform — Sophos Central.
• Protect critical devices beyond operating system vendor support timeframes.
  Sophos Endpoint for Legacy Platforms enables customers to protect a range of Windows and Linux operating systems beyond the standard end-of-support dates offered by platform vendors.
• Legacy systems protected by next-gen technologies.¹
  Web, application, and peripheral controls reduce the threat surface and block common attack vectors on your customers’ legacy and out of support devices, while deep learning AI models protect against both known and never-before-seen attacks. CryptoGuard anti-ransomware and anti-exploitation technologies stop threats fast, so resource-stretched IT teams have fewer incidents to investigate and resolve.
• Neutralize sophisticated attacks that can’t be stopped by technology alone. ²
  Legacy and out of support devices are attractive targets for exploitation by adversaries. Sophos’ AI-powered EDR and XDR tools enable you and your customers to detect, investigate, and respond to suspicious activity across all devices, including legacy platforms. Customers with limited in-house resources can engage industry-leading Sophos MDR services to monitor and respond to threats across their entire IT environment.

 

Sophos partner benefits

Sophos Endpoint for Legacy Platforms enables you to extend your reach and retain more customers.

• Acquire and retain customers with legacy and out of support systems that cannot upgrade endpoints in line with platform vendor EOS timeframes.
• Generate incremental revenue with an add-on subscription for Sophos Endpoint, XDR, and MDR offerings.
• Expand into new markets that require support for legacy platforms, such as OT systems.
• Win opportunities against other vendors that offer extended support for legacy platforms.

 

Who can I sell Sophos Endpoint for Legacy Platforms to?

Sophos Endpoint for Legacy Platforms can be sold to any Sophos Endpoint, Sophos XDR, or Sophos MDR customer — including Taegis XDR/MDR customers using Sophos Endpoint.

Ideal target customers include:

• Organizations with critical systems and devices running on legacy or out of support operating systems, such as manufacturing, healthcare, and energy.
• Organizations with large endpoint estates that struggle to fully upgrade to newer OS versions before a platform vendor’s end-of-support timeframes.
• Customers who currently use different endpoint security solutions for legacy vs. modern platforms.

How is the solution licensed?

Sophos Endpoint for Legacy Platforms is an add-on for Sophos Endpoint, Sophos XDR, and Sophos MDR. The license must be used in conjunction with a valid Sophos Endpoint or Sophos Workload Protection subscription — either as a term license or via monthly MSP Flex billing.

Sophos Endpoint for Legacy Platforms is sold at a flat price for “packs” of devices (1-499, 500-999, etc.), making it simple for customers to purchase, even if they don’t know precisely how many legacy devices are currently running in their environment.

Subscription: Product code (Term): Product code (MSP Flex):

Sophos Endpoint for Legacy Platforms* CW7-SUP CW7-SUP-MSP

* This license was previously called “Central Extended Support for Server 2012/2012 R2”

 

Which operating systems are currently supported?³

Sophos Endpoint for Legacy Platforms currently supports the following platforms (end-of-support dates vary by platform):

• Windows 7
• Windows 8.1
• Windows Server 2008 R2
• Windows Server 2012/2012 R2
• Red Hat Enterprise Linux 7
• CentOS 7
• Oracle Linux 7
• Debian 10
• Ubuntu 18.04 LTS

 

Legacy systems deserve industry-leading security

Don’t risk the security of your customers’ legacy devices with inferior solutions. Devices running out of support operating systems are often critical to an organization, and we believe these systems deserve the strongest protection, from a proven, market-leading endpoint security vendor.

• Sophos has recently been named a Leader in the 2025 Gartner® Magic Quadrant™ for Endpoint Protection Platforms, marking our 16th consecutive report as a Leader in this category.
• Sophos is named a “Customers’ Choice” vendor in the 2025 Gartner® Peer Insights™ Voice of the Customer Report for Endpoint Protection Platforms for the fourth consecutive year and in the inaugural Voice of the Customer Report for Extended Detection and Response. This makes Sophos the only vendor named a “Customers’ Choice” in both reports.
• Sophos is the only vendor named a Leader across the G2 Spring 2025 Overall Grid® Reports for Endpoint Protection Suites, Endpoint Detection and Response (EDR), Extended Detection and Response (XDR), Firewall Software, and Managed Detection and Response (MDR).

 

How can I learn more?

Use the following resources to find out more about Sophos Endpoint for Legacy Platforms:

• Solution brief
• Deskaid
• Product documentation

 

---

¹ Protection features and capabilities vary by platform. See product documentation for details.

² XDR and MDR features and capabilities vary by platform. The Sophos MDR Breach Protection Warranty is not available for legacy platforms. See product documentation for details.

³ Correct at time of publishing. See product documentation for up-to-date platform coverage and end-of-support dates.