Data Protection

Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.

Data Protection

Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.

Suggest an Idea...

You've used all your votes and won't be able to post a new idea, but you can still search and comment on existing ideas.

There are two ways to get more votes:

  • When an admin closes an idea you've voted on, you'll get your votes back from that idea.
  • You can remove your votes from an open idea you support.
  • To see ideas you have already voted on, select the "My feedback" filter and select "My open ideas".
(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. MAC Binding in PPTP VPN

    I have configured PPTP vpn in Sophos but PPTP vpn is not secured other than SSL VPN but SSL VPN Works very Slow. So my concern is i want to MAC Binding in PPTP VPN.
    Lets Suppose i have configured the PPTP VPN in User's machine and he knows the Username and Password of the VPN. he can share to some one and access the network outside from the office so it can be data threat in PPTP VPN. So i request please do something about this security.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  2. Grandular Monitoring of Dropbox

    I need to be able to monitor what files are being uploaded into dropbox.

    This would just need to be the same type of log files you get from files being moved to a USB drive. The file path and name.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  3. email for dlp viloations

    For each DLP policy I would like the ability to configure who to send emails for policy alerts. Right now all alerts go to the Super Admins who often times are not the people responsible for following up on the DLP alerts

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  4. Hitman pro red alert ideas

    hi Sophos here some ideas for hitman pro red alert

    1.make to protect all remote ports
    2.i hear that Russia hakers whant to infect routers with malware to attacks diferent locations , I read I on a website
    I whant you to make a profecional anti exploit shild for modem and raouter so all type of attack will be block by hitman pro red alert and protect your modem or raouter again any attack or exploit your modem or raouter have
    3.make protection scrips website attacks there are a lot of website that cotain scrips infection attacks that open automatic…

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  5. Don't use UserVoice

    UserVoice isn't secure

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  6. Central to support Bitlocker to go

    There is an old entry for this but no new updates / comments. When will we likely see this so that customers can truly go Cloud and not rely on Safeguard for this function. Thanks

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  7. Sophos is coded to filter out nFront Password Filter provider. Can Sophos allow nFront provider to pass through? email to PLAY@XFCU.ORG

    Sophos is coded to filter out nFront Password Filter provider. Can Sophos allow nFront provider to pass through so nFront password filter will work? email to PLAY@XFCU.ORG

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  8. Remotely trigger a PIN reset from the Central Dashboard for machines using encryption.

    Having the ability to force a user to change their PIN via a request from the Central dashboard would be useful. We've gotten a number of requests for the ability to do this from sysadmins.

    31 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    Under Review  ·  0 comments  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  9. windows 10 poa

    Implement Windows 10 POA with Smartcards like in Windows 7. Only the BitLocker PIN is not Enterprise ready in my humble opinion..

    50 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  10. Enable User Switching?

    Didn't catch this lack of support of a basic Windows feature until launching our wide rollout to the hospital PCs. Disabling U.S. might be fine in enterprise large office environments where a cube-dweller uses their dedicated PC for an 8 hour shift. But your product strangles a feature that's ingrained in smaller medical / industrial / retail PC usage. Without U.S. ability, using SafeGuard means a nurse has to close their apps (usually an EMR, Radiology, Lab reports web-view, security system monitor, etc.) and log out completely every time she has to leave the station to bring a new mother…

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  11. Define Password Complexity from Central

    Please add some more Bitlocker configuration possibilities, like the option to configure the password complexity, as described here:
    http://windowsitpro.com/security/q-how-can-i-set-password-complexity-removable-bitlocker-protected-devices

    35 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    1 comment  ·  Sophos Central Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →

    This is on the backlog for a future release.
    We can’t control the GPO settings for the password complexity which means that if the Admin overrides password rules via central GPO settings then we can’t enforce the Central Device Encryption password rules on the endpoint. However, if there are no password rules defined via GPO, the Central Device Encryption password rules will apply.

  12. Reflexion - Notify domain owner when email address placed on BadMail list

    Recently, one of my outgoing email addresses was placed on your Badmail list. I didn't know for two days so I had two days of email that was supposed to go to my customers that failed and won't be retried. Being notified that it was placed on the Badmail list would be much appreciated!

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  13. Allow delegation of exporting Bitlocker recovery keys

    Exporting Bitlocker recovery keys is currently being restricted to Master Security Officers only. This is insufficient for daily business in large organizations. MSO role should be restricted to very small group of people. If this small group of people is unavailable, then nobody is able to recover a Bitlocker client. For this reason the feature of exporting Bitlocker recovery keys should be delegable to "normal" Security Officers.

    Alternately there should be an option to export recovery keys by a script.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  14. Azure database support

    Please support Azure-hosted MS-SQL databases in Safeguard. It is one of the only products in our shop that still requires us to spin up a full MS-SQL server in order to host it.

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  15. Official support for VMWare Horizon (former VMWare VDI)

    Customer switch its desktop environment to VDI environment. They need official support for this VDI platform.

    16 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  16. SGLC Client support XenApp 7.15

    SGLC Client should support XenApp 7.15 terminal services on Windows Server 2016

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  17. Please add YubiKey to the supported smartcards

    Could you please add YubiKeys to your supported smartcards as it's a convient smartcard with multiple use cases. e.g. certificate based user authentication, otp functionality, code signing

    34 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    6 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  18. network aware POA

    Ability to have Network Aware POA on machines (especially BitLocker as there is no user-based POA).

    Many customers need the ability to disable POA on devices in the office - for example shared machines. If the device is stolen, then POA should be enabled immediately. We are currently working on a 3,000 user company with Call Centre who love what we can do in Win7 but need a comparable approach for BitLocker managed machines.

    This would apply for Central as well however we have a larger SGN deployment base today so SGN is the most important starting place.

    32 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  19. Enable Destination Exclusions in Data Loss Prevention Policy Control Panel

    I want to be able to use the Data loss prevention feature in Sophos Cloud Enpoint Protection.

    Problem is, we are unable to use it as when enabled, it also blocks us uploading files to our internal intranet sites via IE. I can see no way of setting destination exclusions for the data loss prevention feature. Which basically truns a potentially amazing feature into an unusable technical tease.

    My suggestion is to add destination exclusions to the Data Loss Prenetion Policy. It should allow file transfer exclusions for internal addresses and allow manual destination exclusions. i.e. Blocks transfers via WeTransfer…

    4 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  20. Data discovery

    The EU General Data Protection Regulation (GDPR) is the most important change in
    data privacy regulation. We need to answer the question "where is PII data" to protect. It would be great if we could identify where PII data is by using Sophos.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →

    What’s being requested here sounds like a data at rest feature, this is a lot different from what we have today, we don’t currently have any plan to add this type of feature in our products. We are looking at GDPR and the current DLP feature to see what we would need to do to be able to support the GDPR requirements from a data in motion aspect.

  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.