Data Protection

Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.

Data Protection

Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. create the password-protected file with the expiry date

    I got a lot of requests that Sophos should has this feature.

    while creating the password-protected file, Sophos should have the ability to set the expiry date in order to protect the file that sending out of the office.

    30 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  2. Using Sophos Encryption with DLP

    Per support it is apparently a bug to run Sophos encryption with DLP at this time:

    https://community.sophos.com/kb/en-us/120861

    We have rolled out encryption in phase one and was intending to implement DLP in phase two. All attempts to use DLP in our pilot program leads to everything being blocked due to encryption.

    This post is to simply track the progress of the bug fix release to allow both solutions to work together.

    2 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  3. FastUserSwithing no longer works after uninstall

    once uninstalled, SGN does not restore the functionality that was initially activated on the workstation (nor even warns the admin that the workstation will not be returned to its initial state): FastUserSwithing no longer works

    3 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  4. Use Driver Updater Software for windows

    Having updated and compatible drivers is very important for a system to function properly. Failing to update your PC drivers leads to glitches, slowdowns when using apps and software, or sudden system crash, etc. Therefore, we need the best free driver updater tool to keep all the installed system drivers updated.
    Anyone would tell me the best software for driver update?

    1 vote
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  5. Disk encryption in other ways

    Unfortunately, there is currently no way to automatically authorize company notebooks if they are on the company network. No matter whether with or without TPM.
    Furthermore, there is no way to assign the encryption password Central, so that not every user can enter their own.
    Unfortunately, there is also no way to create central sticks that are required for encryption.
    Windows offers these options with Bitlocker, but it is not yet centrally supported by Sophos Device Encryption.

    4 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  6. Exception of a DLP case

    If you have a key file that is not read directly via Explorer, it is simply blocked and there is no possibility of including it in the exceptions unless you deactivate the DLP on the client concerned. Of course, this is a bit of a hassle for companies.
    We discovered the problem at Starmoney. A file is created there, without which it is not possible to open Starmoney. Bad if this is then blocked by the DLP.
    According to the support, I should then deactivate the DLP and work in Starmoney and then reactivate it, which of course is not…

    3 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  7. web user option to ask administrator to allow permission to access a website or category

    web user option to ask administrator to allow permission to access a website or category.

    1 vote
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  8. Amazon Workspaces environment needs Sophos SafeGuard Client

    More of our employees and contractors are using laptops remotely and we are creating Amazon workspaces for them to remote into so they are on the company network. Sophos SafeGuard Client does not install on workspaces as the environment is Server 2016 and Server 2012 emulating Windows 10 or Windows 7 for the user. Without the install, the users are not able to access any file shares that are encrypted on the network. This is the only service that is needed. We don't need to encrypt the workspace drive. This is preventing remote staff from working. The remote laptops cannot…

    1 vote
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  9. Linux full Disk Encryption

    Hi,

    It will be nice to have full disk encryption for Linux RedHat, Centos and Ubuntu. Especially these days when government require encryption on their machine. These distributuins are the most used

    Unlike Luks encryption, users should not need to decrypt the disk with a pass code before logging with their domain name.

    Encryption should be controlled from one central point

    1 vote
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  10. UEFI and Secure Boot compatible PCs/Operating Systems prevents Data Control from working

    Please increase development effort on the re-engineering of DLP so it does not use the AppInit_DLLs and therefore can have Secure Boot enabled.

    Microsoft post in May 2018:

    The AppInitDLLs mechanism is not a recommended approach for legitimate applications because it can lead to system deadlocks and performance problems.
    The AppInit
    DLLs mechanism is disabled by default when secure boot is enabled.
    Using AppInit_DLLs in a Windows 8 desktop app is a Windows desktop app certification failure.

    9 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  11. Ability to block file transfer via gmail with DLP - ( Data loss prevention ) feature

    As one of the requirements of the Security Department We would like to Implement
    DLP - Data Loss Prevention via Gmail. That means blocking the transfer of files with a defining characteristic via Gmail. In That way when a user will attach such a file in order to transfer it to any mail destination Sophos will worn and ask permission to do it or just block it without any question.

    1 vote
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  12. DLP Scan Clipboard and Email

    It would be great if DLP could scan the clipboard, and in and outbound email for text matching the bank details profile.

    At the moment it only scans files containing card data, I would like to see it cover a more broad number of scenarios.

    We have found that users would be more likely to write or copy card details into the body of an email, then they are to go to the lengths of creating a file, adding the details, saving the file, and emailing it.

    Thanks

    6 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  13. The ability to encrypt all connected drives (USB, etc...), not just the local drive.

    I need to be able to encrypt all USB drives that get connected to our systems. We have a lot of users who backup up to external drives, which could easily be stolen. Also need to encrypt any usb flash drives that are being used as well. This is a high priority.

    9 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  14. Rule Configuration

    When creating a rule you should be able to select who recieve the email alerts. Either as an individual or to a Distribution Group. Currently you either get all or nothing through the global settings, this should be added as a feature when defining the rule as to who recieves the alerts

    3 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  15. Like to see incorporated

    SafeGuard Portable needs to have the additional option to "permanently" decrypt files in addition to the "one way" feature which re-encrypts the file after exiting the program.
    Not having this feature is a real annoyance especially files on the hard drive. Currently have to take several steps in addition after "decrypting" a file(s) by either copying/moving to another directory or re-naming the current directory. I know that I'm not the only one who has made this request to see this feature incorporated. McAfee does the same thing & the fact both McAfee & SafeGuard fail to mention or warn users…

    1 vote
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  16. Turn on SGMTrace-Logging via button

    The SGMTrace-Logging could be "acitivated" and "deactivated" (= changing Minimumtracelevel from 5a to 0 and back) via buttons in the about-box of SGN.

    12 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  17. Webhelpdesk new recover type "Bitlocker recovery key ID"

    It is a SGN MC recovery feature and should also be available via Webhelpdesk.

    3 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  18. Allow Wildcards in Ignored applications (General Settings->File Encryption)

    Allow wildcards in Ignored applications, instead of having to enter the literal path for excluded applications. In our case we have to include java for preformance reasons, and there are dozens of versions, with new versions being added regurarly, wich requires inervention for every new version. Allowing wildcards would make life allot easyer.

    4 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  19. Allow SafeGuard Management Center to reset/bypass a locked device

    We do not use POA, and are unable to use the Sophos credential provider due to incompatibility with other applications. We use the secondary SafeGuard login, which occurs after logging in with the Windows Credential provider. Currently the only way to reset a locked device is to log in using the credential provider. There should be an option in the Management Center to reset the locked state, or some other option other than having to re-enable the Sophos credential provider, use it once, and disable it again (which can be time consuming if managed through GPOs, because it requires multiple…

    3 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  20. Microsoft Edge

    Support Microsoft Edge as a Browser Destination for DLP. This is the default browser for Windows 10, and it cannot be removed.

    The browser destination features of DLP are severely limited without this.

    33 votes
    Vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    3 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.