In the SafeGuard management center you allow for AD sync, but that sync does not resolve itself when password changes are made. Currently the only solution is to demote and re-promote manually each security officer. If the AD sync could function as a task properly and sync the password changes in an almost LDAP type situation, that would be optimal.

Dynamic ip should be stop to release for device, when blocked the mac for same device by lan to wan rejected rules

Customer switch its desktop environment to VDI environment. They need official support for this VDI platform.

Sophos DLP can not block .zip files with password.
Blocking works only for passwords placed directly on files, such as .xls or .doc, but if the file is without a password and the password is put into compression, the tool can not recognize and lock the file.
With this it is possible to leak information, causing a large breach in data security.

Support Microsoft Edge as a Browser Destination for DLP. This is the default browser for Windows 10, and it cannot be removed.

The browser destination features of DLP are severely limited without this.

According to support, DPL policies do not work on Macs. I tested it and unfortunately, they are correct. This is a great feature and needs to be rolled out to Macs.

I have configured PPTP vpn in Sophos but PPTP vpn is not secured other than SSL VPN but SSL VPN Works very Slow. So my concern is i want to MAC Binding in PPTP VPN.
Lets Suppose i have configured the PPTP VPN in User's machine and he knows the Username and Password of the VPN. he can share to some one and access the network outside from the office so it can be data threat in PPTP VPN. So i request please do something about this security.

I need to be able to monitor what files are being uploaded into dropbox.

This would just need to be the same type of log files you get from files being moved to a USB drive. The file path and name.

For each DLP policy I would like the ability to configure who to send emails for policy alerts. Right now all alerts go to the Super Admins who often times are not the people responsible for following up on the DLP alerts

UserVoice isn't secure

There is an old entry for this but no new updates / comments. When will we likely see this so that customers can truly go Cloud and not rely on Safeguard for this function. Thanks

Sophos is coded to filter out nFront Password Filter provider. Can Sophos allow nFront provider to pass through so nFront password filter will work? email to PLAY@XFCU.ORG

Recently, one of my outgoing email addresses was placed on your Badmail list. I didn't know for two days so I had two days of email that was supposed to go to my customers that failed and won't be retried. Being notified that it was placed on the Badmail list would be much appreciated!

The option is required to block recipient email address in SMTP proxy to block users sending to their personal email accounts or to control recipient address if users are sending email to resigned employees by mistakenly.

Exporting Bitlocker recovery keys is currently being restricted to Master Security Officers only. This is insufficient for daily business in large organizations. MSO role should be restricted to very small group of people. If this small group of people is unavailable, then nobody is able to recover a Bitlocker client. For this reason the feature of exporting Bitlocker recovery keys should be delegable to "normal" Security Officers.

Alternately there should be an option to export recovery keys by a script.

Please support Azure-hosted MS-SQL databases in Safeguard. It is one of the only products in our shop that still requires us to spin up a full MS-SQL server in order to host it.

SGLC Client should support XenApp 7.15 terminal services on Windows Server 2016