Data Protection

Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.

Data Protection

Suggest, discuss, and vote on new ideas for Sophos Data Protection products. Protecting your data, wherever it goes.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Remove old clients from Management Center via GUI

    Customer is asking for the possibility to remove old clients via a GUI window "en bloc" - means that user should get a window with criterias (like last server contact date) to pre-select shown clients and the her should be able to tick mark all clients that should get removed from database.

    6 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  2. Bitlocker - Capture Encryption Start Event - 3503

    When SafeGuard manages a Bitlocker full disk encryption device, event code 3503 - Sector-based initial encryption of drive 'X:' started" should be captured in the Event log of the Safeguard Management console.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  3. SGN8: application based encryption: prevention of decryption

    With SGN8 and application based encryption users also have the possibilty to manually decrypt encrypted files or to create password protected HTML5 containers (which has the same effect) by using the context menue. One of the first questions customers ask us: can I prevent users from doing this?
    Actually I can't. So the feature request is: policy based elimination of the possibility to manually decrypt encrypted files to prevent data leakage.

    48 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    4 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  4. Remove SGN Credential Provider dependency

    Remove the dependency of the SGN Credential Providers and use the Windows standard Providers for Authenticating Users with and without smartcards.
    So the Software is more standard compliant and many problems are solved.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  5. Include support for preselecting a domain at the Credential Provider

    Requested by Customer:
    When an environment is made up of two domains with a federation trust, there is no way to preselect a domain, or force an alias, at the SafeGuard Credential Provider, but at the Windows provider, this can be controlled by a GPO.
    Ex. There is a trust between domain 1 and domain 2, machines in both domains are presented with their logon domain as "domain" at the provider and have SSO to both domain 1& 2 for applications etc. The names domain 1 & 2 are hidden from the end-user.

    7 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  6. Windows Lockscreen Configuration

    At the moment it is not possible to configure the windows 10 locksreen if Safeguad is installed.
    Please make it possible to let the admin choose if it is possible or not.
    Best would be to configure it via Windos GPO. To configure it via Safeguard policy would be an alternative way.

    22 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  7. Allow administrators to configure alert settings

    Really need to have the ability to manage alerting from the Sophos Central console.

    5 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add SGN 8 policy to automatically Decrypt outbound Outlook file attachments

    SGN 8 Synchronized Encryption requires an add-in to manually specify that outbound attachments should be decrypted, or encrypted with a password, or sent as is, but this is not necessary or desirable if there is already an email encryption system in place. I don't want to have to force my users to decision each attachment with SGN when I already have a better email encryption solution in place. There should be auto-decrypt zones such as "outbound outlook attachments".

    10 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    2 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  9. Need to add IDENTITY FINDER to your list of applicaitons to cotrol

    Your application control feature is currently seeing Identity Finders "SHREDDING" function as ransomware and throwing false alarms. We have no way to stop the false alarms as identity finder is not listed in the list of applications to control or not control

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  10. 802.1x authentication

    Support for 802.1x authentication used mainly when connected to Wifi

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  11. disable option decipher file from policies

    disable option decipher file from policies to avoid from certain group users decipher files to send or change location but they can work with them.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  12. Data Control option to scan only when uploading not while downloading

    Data Control scans files both when downloading and uploading files to the web which is crazy...

    Well it's fair enough to have the option.

    Data Control can take ages to scan files...

    I think there should be a setting within the policies to only scan in one direction up, down of both.

    We use it as data loss prevention software to log sensitive going out the building, it grinds on our process when scanning every downloaded file.

    Thanks.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  13. SGN Installer should always log with extended msi-logging

    The SafeGuard client installers should log every installation and uninstallation with the paramter /L*vx to a documented folder.
    In case of error and/or compatibility issues the behaviour would be logged.

    0 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  14. SGN Installer should always log with extended msi-logging

    The SafeGuard client installers should log every installation and uninstallation with the paramter /L*vx to a documented folder.
    In case of error and/or compatibility issues the behaviour would be logged.

    3 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  15. AD Sync check

    Our customer had an issue recently, with the SGN console not able to push the AD modifications to the SQL database ; as a consequence, all the users went out of the domain, and were not having the regular policy. Customer found the root cause of this issue, which is the adding of a domain in self-reg, with the Netbios name "XX" (existing one), followed with the renaming of the correct one. We know that this action is not done by our APIs, which are only getting the information.

    In order to no longer have this situation reproduced (it happened…

    11 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  16. Include Computername in Challenge/Response

    A Platinum Customer wants to include the hostname in the Challenge/Response to make sure that Response Codes fits to the machine.

    The reason is described in sophtrac case 5777475.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  17. Display failed login attempts after SG CP authentication

    After user authenticates through SG CP, a Windows GPO can trigger a display of the last successful and unsuccessful login attempts. The SG CP shows the successful attempts correct, but has a count of zero for correct logins. Displaying this information works correct when Windows CP is used. The information is stored in the OS but the SG CP doesn't appear to pull the failed amount correct.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
  18. Filestream Google

    Although Google Drive Encryption files is supported by Sophos, FileStream it is not. It would liberate resources from computer as it is not mandatory to have files downloaded. As Safe Guard 8.1 encrypts files in local it doesn't work with this cloud resource.
    Dropbox has a similar resource.

    23 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise File Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  19. encrypt zip file

    Sophos DLP can not block .zip files with password.
    Blocking works only for passwords placed directly on files, such as .xls or .doc, but if the file is without a password and the password is put into compression, the tool can not recognize and lock the file.
    With this it is possible to leak information, causing a large breach in data security.

    2 votes
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  New Data Protection Ideas  ·  Flag idea as inappropriate…  ·  Admin →
  20. Move Recovery Button

    Please move the recovery button a bit further from the OK button. UX principles would suggest that such a radically different function should not be close enough to the OK button such that an accidental click renders the system in a temporarily unusable state. OK/Clear/Recovery/Restart or something like that would be better to give a buffer for those of us with fat fingers and itchy mouse triggers.

    1 vote
    Vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)
    You have left! (?) (thinking…)
    0 comments  ·  SafeGuard Enterprise Full Disk Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.