SentinelOne

Who May Access This Software?

USC Faculty, staff, and students.

Description

SentinelOne endpoint security software is designed to detect, remove, and prevent the spread of malware and other security risks.  SentinelOne replaces Sophos, the previous antivirus solution.  Note: Sophos will be retired on 6/15/21.

Computers under Viterbi IT support have been migrated from Sophos to SentinelOne.  If you notice you still have Sophos installed, please contact Viterbi IT at engrhelp@usc.edu.


Installing SentinelOne Enterprise Edition

For faculty, staff or students that have a USC-owned computer

If you would like to install SentinelOne on your USC-owned computer, click here.  You will need your USC NetID account to login.

For faculty, staff or students that have a USC-owned computer and supported by your own department IT

For AME faculty and staff, please contact Dennis Plocher (plocher at usc.edu) for SentinelOne support.

For ECE-S faculty and staff, please contact Seth Scafani (scafani at sipi.usc.edu) for SentinelOne support.

For VASE Grad Department & DEN, please contact siii@den.usc.edu for SentinelOne support.  VASE Undergrad Department should contact engrhelp@usc.edu.

Notes on SentinelOne Enterprise Edition (for USC-owned computers)

Does the SentinelOne Enterprise Edition have an expiration date?

The Enterprise Edition does not currently have an expiration date.

Where can I get help with installing or using SentinelOne on self-managed, USC-Owned devices?

Please contact ITS Customer Support Center, 213-740-5555 (24x7), or email consult@usc.edu (M-F 8a-6p).

Where can I get help with installing or using SentinelOne on local IT-managed, USC-Owned devices?

Please contact your local IT unit for assistance.

What information is gathered by SentinelOne Enterprise Edition and by whom the information may be seen?

When Internet is available, the SentinelOne software will report its status, hardware and software inventory, and security threats/incidents on the devices to central SentinelOne management server accessible to USC ITS Security Operations Center, USC ITS Customer Support Center, and local IT.

Does SentinelOne Enterprise Edition monitor use of devices?

In order to protect against security exploits, the SentinelOne software actively monitors use of devices but only activities classified as security threats/incidents are registered with the central management which is accessible to USC ITS Security Operations Center, USC ITS Customer Support Center, and local IT.

Installing SentinelOne Personal Edition

For faculty, staff or students with a personally owned computer

USC provides SentinelOne for Personal Devices free for up to five (5) personally owned computers running Windows, Mac or Linux operating systems to faculty, staff and students.  Please click here.  You will need your USC NetID account to log in.

Notes on SentinelOne Personal Edition (for personally owned devices)

Does the SentinelOne Personal Edition have an expiration date?

The Personal Edition does not currently have an expiration date. Even if the individual leaves USC, the software will keep working. However, this may change in the future.

Where can I get help with installing or using SentinelOne Personal Edition on personally owned devices?

Please contact Cyberforce Security, support@cyberforcesecurity.com using your USC email address.

What information is gathered by SentinelOne Personal Edition and by whom the information may be seen?

When Internet is available, the SentinelOne software will report its status, hardware and software inventory, and security threats/incidents on the devices to central SentinelOne management server accessible to USC ITS Security Operations Center, USC ITS Customer Support Center, and Cyberforce Security (USC SentinelOne Support Partner).

Does SentinelOne Personal Edition monitor use of devices?

In order to protect against security exploits, the SentinelOne software actively monitors use of devices but only activities classified as security threats/incidents are registered with the central management which is accessible to USC ITS Security Operations Center, USC ITS Customer Support Center, and Cyberforce Security (USC SentinelOne Support Partner).

FAQs

Will Sophos antivirus continue to be supported after it is retired on 6/15/21?

Post 6/15/21, Sophos will no longer be supported or continue to receive updates.

Will Sophos antivirus stop working after 6/15/21?

Post 6/15/21, existing installation of Sophos will continue to work but it will not receive any updates. The Sophos agent will complain about failed update attempts.

On which Operating Systems does SentinelOne agent run?

SentinelOne offer client agents for Windows, macOS, and Linux. At this writing, there is no SentinelOne agent available for macOS on M1 processor or Windows on ARM processor. Those agents will be available on a later date.

How do I know if SentinelOne is intalled?

Windows
On your Windows task bar to the bottom right of the desktop screen, click the up arrow icon, the presence of SentinelOne icon (highlighted in red rectangle) will show if it exists.

macOS
On the Apple menu bar, you should see the SentinelOne icon near the clock.

How do I authorize full disk access after installing on macOS 10.15 or later?

Please reference this tutorial to authorize full disk access for users running macOS Catalina 10.15 or later.

Where can I learn about SentinelOne’s Privacy Policy?

SentinelOne’s Privacy Policy is available at https://www.sentinelone.com/legal/privacy-policy/.  Any SentinelOne privacy questions or concerns may be directed to endptsec@usc.edu.

Published on March 2nd, 2021

Last updated on June 14th, 2021