Data Protection
Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.
-
Gold Image Deployment
Support deployment via a 'Gold Image' for use within a Citrix XenDesktop persistent or non-persistent desktop environment. Similar to the methods used with other Sophos products such as EndPoint - https://community.sophos.com/kb/en-us/120560
6 votes -
unclassified
How can i identify unclassified data used
1 vote -
virtualbox
Please add back support for cliënt installations on Virtualization platforms, as of now customers with a Virtual Desktop Infrastructure are unable to use Safeguard v8.1, ESX(i) and Hyper-V are not supported. I use Virtualbox to test set-ups and give demonstrations.
https://community.sophos.com/kb/en-us/132189
Virtualization platform support.
The SafeGuard Client only supports VMware Workstation and Player as virtualization platform. All other platforms like VMware ESX/ESXi Server, Microsoft Virtual PC, Microsoft Hyper-V are not supported. VirtualBox is incompatible with SafeGuard 8.1 and might cause BSODs (IRQLNOTLESSOREQUAL).7 votes -
revoke
The Automatic Revoke BITLOCKER Key feature of Sophos needs to be a configurable setting
at the enterprise and estate levels or via the Encryption Policy. Automatically revoking a valid key requires that the PC be off-line for the "former" valid key to be used. If the PC is on-line and the key is read, that key immediately become invalid - even if the PC is shutdown shortly. We need to be able to read a key and use it. We need the option to revoke or not. I recommend a read option and a revoke option.Our Sophos Managers are…
4 votes -
Complete AD sync for safeguard management center
In the SafeGuard management center you allow for AD sync, but that sync does not resolve itself when password changes are made. Currently the only solution is to demote and re-promote manually each security officer. If the AD sync could function as a task properly and sync the password changes in an almost LDAP type situation, that would be optimal.
2 votes -
Dynamic ip should be stop to release for device, when blocked the mac for same device by lan to wan rejected rules
Dynamic ip should be stop to release for device, when blocked the mac for same device by lan to wan rejected rules
1 vote -
Safeguard HTML Wrapper Branding
Add the ability to brand the HTML wrapper file when using the option to 'create password protected file'.
At least being able to add/change a company logo to replace the default Sophos logo maybe with 'powered by Sophos Safeguard' or similar. This would give recipients more 'confidence' that the attached HTML file was genuinely from the user at their company and the attachment hasn't been 'compromised'.
3 votes -
DLP for Mac
According to support, DPL policies do not work on Macs. I tested it and unfortunately, they are correct. This is a great feature and needs to be rolled out to Macs.
15 votes -
Ability to setup reports in the GUI of Safeguard Enterprise
As far as I've researched there isn't any way of producing reports on Safeguard Enterprise and the client computers outside of using the SQL Management Studio with SQL scripts. Especially if the encryption had failed on a laptop or finding out about suspicious activity with a user having multiple failed logons, I feel having no ability to automatically find out this information can feel like a problem on a security end.
Therefore, I would like to suggest the ability to set up some granular reporting on the GUI side for reporting events of interest and also setup email on a…
1 vote -
Support for Central Device Encryption on Server platforms
Manage BitLocker on Server platforms and also support a cost-effective decommissioning process of drives.
43 votesThanks for the feedback. This is something we are considering for future versions.
-
SGN File Encryption: Generate Keys with Passphrase in Management Center
To generate Keys with passphrase it is necessary to create them on a client an sync them into the management before using them in a policy.
It would be easier and ore intuitive for admins to create them with passphrase in the management center.6 votes -
Support for BitLocker To Go
Manage full disk encryption on removable media by introducing a new policy setting for BitLocker To Go.
28 votes -
Hitman pro red alert ideas
hi Sophos here some ideas for hitman pro red alert
1.make to protect all remote ports
2.i hear that Russia hakers whant to infect routers with malware to attacks diferent locations , I read I on a website
I whant you to make a profecional anti exploit shild for modem and raouter so all type of attack will be block by hitman pro red alert and protect your modem or raouter again any attack or exploit your modem or raouter have
3.make protection scrips website attacks there are a lot of website that cotain scrips infection attacks that open automatic…4 votes -
MAC Binding in PPTP VPN
I have configured PPTP vpn in Sophos but PPTP vpn is not secured other than SSL VPN but SSL VPN Works very Slow. So my concern is i want to MAC Binding in PPTP VPN.
Lets Suppose i have configured the PPTP VPN in User's machine and he knows the Username and Password of the VPN. he can share to some one and access the network outside from the office so it can be data threat in PPTP VPN. So i request please do something about this security.1 vote -
Grandular Monitoring of Dropbox
I need to be able to monitor what files are being uploaded into dropbox.
This would just need to be the same type of log files you get from files being moved to a USB drive. The file path and name.
1 vote -
email for dlp viloations
For each DLP policy I would like the ability to configure who to send emails for policy alerts. Right now all alerts go to the Super Admins who often times are not the people responsible for following up on the DLP alerts
1 vote -
Sophos Central Disk Encryption: Need to be able to decrypt a drive from Central Management
Sophos Central Disk Encryption: Need to be able to decrypt a drive from Central Management
- It would be really convenient. It could be done as a popup/checkbox choice if we are removing the encryption software from an endpoint (or multiple endpoints with a a set of confirmation steps for decrypting).
In an MSP environment, MSP customers often leave and MSPs want the ability to put things back into a state where they were before they got there. Another reason to add this feature .
5 votes -
Central to support Bitlocker to go
There is an old entry for this but no new updates / comments. When will we likely see this so that customers can truly go Cloud and not rely on Safeguard for this function. Thanks
1 voteThanks for the feedback. We do not have any immediate plans to add support for BitLocker to Go.
-
Allow Mass Verification of Key Presence in SGN Database
There should be a process, field, alert, literally ANYTHING that allows us to check, en masse, the presence of a valid recovery key. The only way to make sure that a valid key exists is to check the machines manually.
We have had issues with Surfaces, where the key becomes corrupted or lost or something, and we don't realize there is a problem until we have to actually do a recovery.
Other products have an alert or something that says when a client is in a state that isn't optimal. SGN does not. It should be easy to query the…
14 votes -
Sophos Central - Manage Endpoint Software: Add ability to remove any/all Sophos software from a computer from the Central Management Console
Sophos Central - Manage Endpoint Software: Add ability to remove any/all Sophos software from a computer from the Central Management Console.
This should include just Central Encryption Components as well.
Many MSPs want the ability to remove their management for their customers and this would include all traces or a managed software solution. This is a very common request among MSPs and their automation facilities and tools that they use to manage and deploy software to customer computers.
3 votes
- Don't see your idea?