Support deployment via a 'Gold Image' for use within a Citrix XenDesktop persistent or non-persistent desktop environment. Similar to the methods used with other Sophos products such as EndPoint - https://community.sophos.com/kb/en-us/120560

In the SafeGuard management center you allow for AD sync, but that sync does not resolve itself when password changes are made. Currently the only solution is to demote and re-promote manually each security officer. If the AD sync could function as a task properly and sync the password changes in an almost LDAP type situation, that would be optimal.

Dynamic ip should be stop to release for device, when blocked the mac for same device by lan to wan rejected rules

Please add back support for cliënt installations on Virtualization platforms, as of now customers with a Virtual Desktop Infrastructure are unable to use Safeguard v8.1, ESX(i) and Hyper-V are not supported. I use Virtualbox to test set-ups and give demonstrations.

https://community.sophos.com/kb/en-us/132189
Virtualization platform support.
The SafeGuard Client only supports VMware Workstation and Player as virtualization platform. All other platforms like VMware ESX/ESXi Server, Microsoft Virtual PC, Microsoft Hyper-V are not supported. VirtualBox is incompatible with SafeGuard 8.1 and might cause BSODs (IRQL_NOT_LESS_OR_EQUAL).

Please add some more Bitlocker configuration possibilities, like the option to configure the password complexity, as described here:
http://windowsitpro.com/security/q-how-can-i-set-password-complexity-removable-bitlocker-protected-devices

Customer switch its desktop environment to VDI environment. They need official support for this VDI platform.

Although Google Drive Encryption files is supported by Sophos, FileStream it is not. It would liberate resources from computer as it is not mandatory to have files downloaded. As Safe Guard 8.1 encrypts files in local it doesn't work with this cloud resource.
Dropbox has a similar resource.

Although Google Drive Encryption files is supported by Sophos, FileStream it is not. It would liberate resources from computer as it is not mandatory to have files downloaded. As Safe Guard 8.1 encrypts files in local it doesn't work with this cloud resource.
Dropbox has a similar resource.

Add the ability to brand the HTML wrapper file when using the option to 'create password protected file'.

At least being able to add/change a company logo to replace the default Sophos logo maybe with 'powered by Sophos Safeguard' or similar. This would give recipients more 'confidence' that the attached HTML file was genuinely from the user at their company and the attachment hasn't been 'compromised'.

Sophos DLP can not block .zip files with password.
Blocking works only for passwords placed directly on files, such as .xls or .doc, but if the file is without a password and the password is put into compression, the tool can not recognize and lock the file.
With this it is possible to leak information, causing a large breach in data security.

Support Microsoft Edge as a Browser Destination for DLP. This is the default browser for Windows 10, and it cannot be removed.

The browser destination features of DLP are severely limited without this.

According to support, DPL policies do not work on Macs. I tested it and unfortunately, they are correct. This is a great feature and needs to be rolled out to Macs.

Please move the recovery button a bit further from the OK button. UX principles would suggest that such a radically different function should not be close enough to the OK button such that an accidental click renders the system in a temporarily unusable state. OK/Clear/Recovery/Restart or something like that would be better to give a buffer for those of us with fat fingers and itchy mouse triggers.

When a network user logon to a computer with SGN installed and the user´s password is expired, SGN requests a password change.

SGN must have a way to disable this feature, preventing request a new password to network users when company uses a external Password Manager.

Providing SGPortable without Data Exchange or Cloud Storage would enable 3rd Party Users to read encrypted files provided by SGN-Users without using Outlook-Plugin (in addition to the ideas of SyncEnc Appication Wildcards and Keygeneration with passphrase in SGN MC)

With the ability to user wildcards for "any application" it would be possible to combine
- Synchronized encryption for the company
- Full File Encryption for certain paths

To generate Keys with passphrase it is necessary to create them on a client an sync them into the management before using them in a policy.
It would be easier and ore intuitive for admins to create them with passphrase in the management center.

I have configured PPTP vpn in Sophos but PPTP vpn is not secured other than SSL VPN but SSL VPN Works very Slow. So my concern is i want to MAC Binding in PPTP VPN.
Lets Suppose i have configured the PPTP VPN in User's machine and he knows the Username and Password of the VPN. he can share to some one and access the network outside from the office so it can be data threat in PPTP VPN. So i request please do something about this security.