Do you recognize a good idea when you see one? We want to hear from you!
Header Image

UTM Manager (Formerly ACC) Feature Requests

Do you have an idea? Do you recognize a good idea when you see one? We want to hear from you!

I suggest you ...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  1. A feature for the SUM to push user accounts to associates UTMs

    For MSPs it would be very easy to handle technician control if we could push local user accounts from the SUM to connected UTMs based off of grouping.

    4 votes
    Vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      You have left! (?) (thinking…)
      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
    • sum dashboard

      For some reason, at the SUM dashboard you can set it to display ALL but it usually cuts the grid to a maxium of 16 more or less.
      The CSS code could have its "height" style grown.

      At : ".resources_p_style_ie, .resources_p_style {"

      1 vote
      Vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)
        You have left! (?) (thinking…)
        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
      • Make SUM Enterprise a paid license improving central management features a lot

        ...trying to reduce the gap with mature products like CP SmartCenter.

        1 vote
        Vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)
          You have left! (?) (thinking…)
          0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
        • Sophos UTM Manager - MSP License Portal - Alert Notifications if license portal cannot be contacted

          We had an incident whereby a customer's SUM didn't renew licenses for managed UTMs from the MSP License Portal, which caused outages for services on the managed UTMs over the weekend. We would like alert notifications to be generated from the SUM should it fail to contact the licensing portal to prevent outages and breach of SLAs in the future. This is a business critical request.

          16 votes
          Vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)
            You have left! (?) (thinking…)
            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
          • Sophos UTM Manager - MSP License Portal Certificate Expiry Alerting or Cert Auto Renewal

            We have had issues with a customer's MSP Licensing certificate expiring at the end of the month on a weekend, right before license renewal for managed UTMs is due. This automated renewal for client UTMs should have taken place, but as the certificate expired on that day (a Saturday) the renewal of the managed UTMs licenses didn't go through until re-authentication with the MSP portal and this caused downtime for client UTMs. A simple script or tool that carries out a method similar to this to simply alert the admin would prevent such issues. This is a quick and easy…

            1 vote
            Vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)
              You have left! (?) (thinking…)
              0 comments  ·  Flag idea as inappropriate…  ·  Admin →
            • Add license expiry notifications via email to the Sophos UTM Manager

              Introduce an option on the UTM Manager to allow it generate an email when a license is nearing expiry

              2 votes
              Vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)
                You have left! (?) (thinking…)
                0 comments  ·  Flag idea as inappropriate…  ·  Admin →
              • Implement 2 factor authentication in UTM Manager

                UTMs allow for 2 factor authentication now. The UTM Manager, though, doesn't. However, due to its capabilities the UTM manager is a much more potent platform – and therefore one that deserves at least as much protection as a single UTM does.

                Using the UTM Manager is even worse for security as it allows to bypass existing 2 factor authentication on UTMs registered with the UTM Manager.

                So please implement 2 factor authentication in the UTM Manager, too.

                1 vote
                Vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)
                  You have left! (?) (thinking…)
                  0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                • Allow port 443 for SUM Gateway Manager

                  Most users don't Need a "user-Portal" at SUM.
                  But the Helpdesk-Team's often know the SUM-DNS-Name but don't know the port.
                  Allowing the Default HTTPS port would be helpful.

                  3 votes
                  Vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)
                    You have left! (?) (thinking…)
                    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                  • gateway manager

                    A way to increase the default value of 25 objects displayed in SUM Gateway Manager global definitions.
                    This can be done on sum using Management>WebAdmin Settings>user preferences and then down to the 'Table pager options' but this change does not reflect on SUM Gateway Manager.

                    1 vote
                    Vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)
                      You have left! (?) (thinking…)
                      0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                    • Have SUM refuse UTM connections with shared password if none is set in SUM

                      I had to reinstall my Hyper-V host some months ago. All works fine, but all my VMs have new MAC addresses. Result is that I cannot connect to my SUM virtual machine anymore. It boots up fine, but I guess it cannot find its old interface hardware.
                      No problem, I wanted to upgrade it to 4.2 anyway. So I shut the old VM down and installed a new SUM VM. I thought I would copy the firewall rules by hand from one of the UTMs and then switch over to the new SUM. Of course, during install I gave it…

                      3 votes
                      Vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)
                        You have left! (?) (thinking…)
                        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                      • SUM Gateway Manager Title

                        Allow the browser title within the Gateway Manager to be modified like the SUM's WebAdmin. Ideally, this should be independent of the setting of the SUM's WebAdmin browser title.

                        This would likely require a "User Preferences" area for the Gateway Manager. If located within the WebAdmin, this would force settings for non-WebAdmin Gateway Manager users. If within the Gateway Manager, this would allow any user to change their settings.

                        1 vote
                        Vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)
                          You have left! (?) (thinking…)
                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • Polymorphic / Dynamic definitions

                          The idea is to help to deploy many UTM on sites where administrators can push templates of rules using polymorphic definitions.
                          The rule (the template) will be the same on each UTM where it has been pushed, but the values for the definitions (source/destination and eventually service) will differ depending the target UTM.

                          We could create Global Variables on SUM like :
                          - network_prod
                          - mail_server

                          and in the parameters of each managed UTM, force a value for the variables :
                          On UTM A
                          network_prod : 192.168.7.0/24
                          mail_server : 192.168.0.25

                          On UTM B
                          network_prod : 172.16.7.0/28
                          mail_server : 192.168.45.25

                          etc...

                          3 votes
                          Vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)
                            You have left! (?) (thinking…)
                            0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                          • Scheduled operations should use local UTM time instead of SUM time

                            The time when a scheduled operations is beein executed is the time of the SUM, and not the time of the UTM. This is a problem in world-wide distributed UTM environments.
                            Imagine a "scheduled operation" which should install a firmware up2date at 1:00 am in the morning on all UTMs world-wide. If the UTMs are in different timezones, lets say Vancouver, Berlin, and Sydney, and the SUM is located in Berlin too (thus with European time) the firmware up2date will take place at 1:00 am on the UTM in Berlin - fione. But it will be execute at
                            at 11:00…

                            4 votes
                            Vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)
                              You have left! (?) (thinking…)
                              0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                            • SUM push users to managed devices

                              Make SUM push users to remotely managed devices, so if I add a User to SUM, i can then logon to the managed devices using the newly created logon without manually created the logon on all the firewalls.

                              3 votes
                              Vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)
                                You have left! (?) (thinking…)
                                0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                              • IPv6 support

                                UTM has been supporting IPv6 for many years now (since V8!). This means IPv6-enabled firewalls cannot be managed centrally.

                                4 votes
                                Vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)
                                  You have left! (?) (thinking…)
                                  1 comment  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
                                • Support UTM V9.1 features

                                  The current UTM Manager does not support static DNS entries in the Host objects (they were moved there in V9.1). This means that for each centrally managed object, a local copy has to be made right now if a static DNS entry is needed.

                                  The same is true with static DHCP settings, MAC addresses, etc. It looks like SUM is one version behind UTM, which makes the whole central management concept unusable.

                                  3 votes
                                  Vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)
                                    You have left! (?) (thinking…)
                                    0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
                                  • SUM Worldmap: HTTPS (not mixed HTTPS/HTTP)

                                    For the Sophos UTM Manager Worldmap (SUM Worldmap), use an HTTPS maps service like Google Maps. The current implementation of mixing HTTP content inside an HTTPS page breaks in most browser configurations as it's normally seen as a security risk for potential disclosure of secured information.

                                    3 votes
                                    Vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)
                                      You have left! (?) (thinking…)
                                      1 comment  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                                    • SUM: Manage/distribute DHCP options

                                      ACC is not able to manage or distribute DHCP options. This makes it difficult when there are multiple UTMs.

                                      2 votes
                                      Vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)
                                        You have left! (?) (thinking…)
                                        0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
                                      • SUM: Central NAT Rules

                                        it would be a big possibility to push rules DNAT and SNAT to UTM!!!!!

                                        4 votes
                                        Vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)
                                          You have left! (?) (thinking…)
                                          0 comments  ·  Configuration  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Super Global Definitions

                                          Add Network/Service definitions which can be assigned to multiple OUs, or make it possible to deploy a definition to multiple UTMs within different OUs.

                                          I would like to use UTM Manager to manage definitions which are bound to more than one OU, or not bound to any OU at all, because it's useless for us the way it works now.

                                          We're managing UTMs of many different companies, where each has its own OU. But some of them f.ex. use the same VoIP phone system which require the same services. Make it possible to do some kind of super global definitions…

                                          3 votes
                                          Vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)
                                            You have left! (?) (thinking…)
                                            0 comments  ·  Central Management  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 6 7
                                          • Don't see your idea?

                                          UTM Manager (Formerly ACC) Feature Requests

                                          Feedback and Knowledge Base