We would like to be able to investigate (see the details) emails that have had their URLs rewritten so that we can determine if further actions are required such as blocking the website, see if they have been clicked by users, if they are deemed as malicious, what type of malware or threat is associated with the link. At this time we are unable to determine what the original link was in the sophos email appliance. We would like to see the same capabilities Proofpoint provides around this available for the email appliance.

Can we have an O365 Web application category on the Sophos Web applience like there is in Sophos XG Firewall so that we can bypass all O365 IP's/URLs?

not able to add as trusted relay which is a limitation of the Central

Need to be able to manage multiple seperate domains. When we purchase a company we link the domain with a trust relationship but need to add the new domain into the web appliance

client would like to see all sites visited by a user not just the top sites

I would like to see a log viewer in the SEA web UI that shows any system configuration changes, user account management events, and changes to policies made on the SEA. (event filtering capabilities would be great)

Sophos Email security product should provide detailed report of processes emails including number and type of attachments per email users (in & out both).

So that we can understand how many users getting what type of attachments like
compressed
encrypted
Macro enable
pdf
etc..

There should be session based login into Sophos email security appliance Web GUI to avoid misuse of admin credential or unauthorized configuration change.

Means after a fixed interval of inactivity over Web GUI, login session should be expired.

Offering some sort of image compression feature, similar to Bandwidth Hero (image re-encoding, convert to grayscale, etc) in order to serve in an efficient way mobile or with low performance connection clients.

It would be nice to be able to create a report on users clicked and no. of hits based on a local site list tags. Currently, you can only create reports based on categories but you are unable to create custom categories. The tags was created because of this but then reporting on them isn't available. Some customers wants to create their own "non-business" related sites and monitor + report on them so this feature would definitely be useful.

Please add Adobe Cloud to the web application controls so that we can allow certain levels of access to adobe cloud without allowing uploading.. Similar to what has been done with Google Drive and One Drive.

Hi Team,

as an extension, it would be highly useful to implement an option for adding additional RBLs in Webappliances (for example URLHAUS -> urlhaus(DOT)abuse(DOT)ch ).

Thanks for considering and
kind regards,
Stefan

(this feature request was brought based on customers support case #9415978)

When using SSL-Inspection, it should be possible to deaktivate outdated TLS-versions like TLSv1.0 / 1.1.
It is recommended to disable SSLv3/ TLSv1.0 / 1.1 in the browser settings. This setting is useless, however, as the SWA always uses SSLv1.2 in the direction of the client.
So it can happen that a website with TLSv1.0 is requested, which is transferred to the client, on which TLSv1.0 is deactivated, with TLSv1.2.
That's a security problem.

Would be very helpful if you were able to display HTML content as part of the encrypted email and not just basic text. Same applies here to the reformatting of the email signature.

It should be possible to enable the "encrypt" button by default, so that it is not necessary to turn it on for every single email that one need to send encrypted (which is the majority).

The cloud web gateway needs to have an import function for block/allow lists of sites. Migrating to this platform is difficult when you have to manually enter every single blocekd or allowed site that you are migrating from another platform.

Hello Team,

We have the partner here requesting to have the helpdesk role in web appliance to manually synchronize the AD. This will allow the customer to no need to call the partner just to request to manually synchronize the AD if there are changes done on AD. For your assistance please. Thank You.

Hello Team,

We have customer here requesting to to have option to change the interval for the default synch time of AD to Web appliance. Customer advise that they need to have shortened AD synch interval as when they do changes on AD, it takes time for the synchronization to take effect. Partner is aware that he can do the manual synchronization but he said that customer needs to contact him just to do the manual synchronization. For your assistance please. Thank You

Email Appliance - Modify/Delete Header "Received from" showing local hostname and its local IP
sample header:
Received: from (local hostname) (unknown [local IP]) by mail.customer.domain (Sophos Email Appliance) with ESMTP id DDBB55220751_D330E57F for <external email eg. gmail>; Sat, 20 Jul 2019 12:51:35 +0000 (GMT)

Email Gateway Encryption needs some enhancements.
1. Option to disable multiple languages when users receive encrypted emails.
2. Sophos uses Echoworx for encryption but doesn't utilize the web portal. Giving the ability to use the web portal for recipients to send back a message encrypted would be great and it will be secure.