Do you recognize a good idea when you see one? We want to hear from you!
Header Image

Sophos Data Protection

Welcome to the Sophos Data Protection feedback forum. Do you have a feature or change request? We want to hear from you!

NOTE: Please post in English as it allows others to read and vote for them and do not include any personal or company details as this is a public forum!

How can we improve Sophos Data Protection products?

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. SGN8: application based encryption: prevention of decryption

    With SGN8 and application based encryption users also have the possibilty to manually decrypt encrypted files or to create password protected HTML5 containers (which has the same effect) by using the context menue. One of the first questions customers ask us: can I prevent users from doing this?
    Actually I can't. So the feature request is: policy based elimination of the possibility to manually decrypt encrypted files to prevent data leakage.

    30 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
    • Support Apple Open Directory with SGN

      OSX client based on Apple Open Directory should be fully manageable with the SGN Management Center.
      FileVault2 and File Encryption policy should be fully applicable for those kinds of objects (machines and users).
      Use cases like re-image of client or re-name of user should be part of implementation.

      14 votes
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
      • Support Terminal Server

        (NextGen) File Encryption cannot be used by Terminal Services, because there is no client for the machines. Even SGLC has TS Support, so there should be a way to handle multiple keyrings on a machine in SGN.
        There should be a support for MS TS, current XenApp and VDI-solutions.

        19 votes
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
        • For Enterprise Data Exchange and SGPortable - use whole-disk encryption instead of file-based

          We are working on a fairly large deployment of Data Exchange with SafeGuard and it would be very useful (and more secure) if you had a model similar to the self-encrypting thumb drives out there. I'd really like to see two partitions - one with the SGPortable in the clear, and the other fully encrypted and only accessible after you enter the pass phrase.

          One of our pilot users wisely pointed out that she could just not start SGPortable and save files unencrypted to the thumb drive.

          12 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
          • SafeGuard Watchdog should also monitor status of SGNAuthService and reset it if it hangs

            SafeGuard Watchdog should also monitor status of SGNAuthService and reset it if it hangs. Customers provide feedback that if the SG Credential Provider will not show up when trying to login a manual restart of SGNAuthService will help.
            So why not using our own watchdog to get rid of this issue?

            6 votes
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
            • Multiple keys for application based encryption

              Our upcoming Next Generation Data Protection solution with application based encryption shall also have support for assigning different keys for defined locations.

              21 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                1 comment  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
              • SGFE for Mac - policy vs. interface

                Some attention to the interface would seem necessary to address perceived "shortcomings" in the product regarding external media (thumb drives...)
                Background:
                Policy set to always encrypt. Dialog box pops up asking if user wants to encrypt.
                Currently:
                No encryption takes place until the dialog box is addressed even though policy is to always encrypt.
                This leaves a window of opportunity for the user to not encrypt the drive/data. Arguably that is nice, in the event the drive is not yours, and it would be problematic to encrypt data on a drive that is from a user outside of the organization... …

                1 vote
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
                • Support GPT Type Harddisk

                  please help to support GPT type harddisk in further, since some laptop ony support GPT type Harddisk

                  1 vote
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                  • Country

                    Are you mentally healthy? Look at the sorting of countries on your website! Support, Submit a Sample, File - Country ... crazy

                    1 vote
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
                    • Include Computername in Challenge/Response

                      A Platinum Customer wants to include the hostname in the Challenge/Response to make sure that Response Codes fits to the machine.

                      The reason is described in sophtrac case 5777475.

                      1 vote
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                      • Get new support personnel !!! worst support 2 straight calls ... why am I paying money to argue with someone ? Smh

                        Guy gave me an article from 2003 and argued with me for an hour ...terrible

                        1 vote
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                        • AD Sync check

                          Our customer had an issue recently, with the SGN console not able to push the AD modifications to the SQL database ; as a consequence, all the users went out of the domain, and were not having the regular policy. Customer found the root cause of this issue, which is the adding of a domain in self-reg, with the Netbios name "XX" (existing one), followed with the renaming of the correct one. We know that this action is not done by our APIs, which are only getting the information.

                          In order to no longer have this situation reproduced (it happened…

                          7 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
                          • Display failed login attempts after SG CP authentication

                            After user authenticates through SG CP, a Windows GPO can trigger a display of the last successful and unsuccessful login attempts. The SG CP shows the successful attempts correct, but has a count of zero for correct logins. Displaying this information works correct when Windows CP is used. The information is stored in the OS but the SG CP doesn't appear to pull the failed amount correct.

                            1 vote
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
                            • Don't see your idea?

                            Feedback and Knowledge Base