So, admittedly, I'm not familiar with Sophos products, but I'm willing to help you think around this issue if you still need a hand.
based on what I'm reading on the Sophos website, you'll need to start by distributing the files for the installation as stated here """
- Log in to Sophos Central Admin.
- Go to Protect Devices, then choose one of the following options:
- Download Complete macOS Installer
- Choose Components (this option is available if licensed for multiple features)
- The file SophosInstall.zip is then downloaded and is by default saved on the Downloads folder.
- Extract its contents to the same folder. The following should then be found where the files are extracted to:
- Sophos Installer Components folder
- Sophos Installer.app
These files must be in the same location because the file Sophos Installer.app requires the Sophos Installer Components folder to be in the same location when it runs.
- Provide executable permissions to the following files before running the installer. This can be done with the following commands:
- sudo chmod a+x /Users/<username>/Downloads/Sophos\ Installer.app/Contents/MacOS/Sophos\ Installer
- sudo chmod a+x /Users/<username>/Downloads/Sophos\ Installer.app/Contents/MacOS/tools/com.sophos.bootstrap.helper
- Run the below install command:
sudo /Users/<username>/Downloads/Sophos\ Installer.app/Contents/MacOS/Sophos\ Installer --install
This command assumes that the Downloads folder contains the extracted files stated in the previous step. If the files were extracted to another location, change the command above to the corresponding folder.
So my thought (have no testing data to back up anything I'm saying, so feel free to quit reading) was that one could take the .zip, distribute it across the devices using Munki. This would require us to step back and determine how we would get Munki client installed on the devices..... which is where SM's ability to distribute .pkg files comes in.
1. set up server-side of Munki
2. import Intercept X into Munki Server
3. distribute Munki client .pkg via SM 'apps' interface, which should be able to silently install the Munki client on the targeted machines silently, though you may have to dig for the right flags for the install command
4. On the same page where you would import the Munki client pkg, you can provide CLI arguments. Now you could just put together the arguments to extract, move, and install the Intercept X stuff, but personally I feel like it'd be easier to just write up a script to accomplish this and call the script in that CLI spot. IDK, up to you.
5. By this point, the installation should be pretty much complete to my knowledge... but some additional checks and clean-up can be performed too, as per Sophos' documentation on post-client steps...
I hope that makes any kind of sense, I'm sort of having a day.