Please add Imation IronKey Secure USB Device to supported secure devices for it to be recognized by the device control policy

Ability to define email protection configurations via SUM. This functionality exists with the Sophos SEA appliance "configuration sharing" . This would be useful in environments where UTMs' are deployed to more than one office with each office exchange.

please consider to have this flexibility for non-english user.

introduce feature to limit upload limit for internet users by system administrators

introduce feature to limit upload limit for internet users by system administrators

Now all devices are clasiffied as non-comliant unless told by SMC, so all devices must be managed by SMC to be able to connect to wifi. Which is not always the case.

Add last seen date to Sophos active ip address list.

Have a way of blocking IPs or throttling them from the bandwidth usage graph

When managing multiple UTMs it would be nice to have the interface show you in a very obvious way which UTM you are logged into . The grey space between the UTM version and username would be good place for that as it is persistent across all menu options.

Some of our customers use OSPF on the UTM to connect their network. Sometimes they miss to renew the license ...
If we got notice of that, we can help them for maybe 10-30 days with a temporary license until they get the real new one.
But the problem is, the UTM is not accessible from anywhere (SSL VPN or Network) because the routing instance is dead.
My idea is to send them the temp file, they put it on a usb and reboot the UTM.
If the utm searches for such a file it can easily be installed.

Sony Austria uses SGN MC on Terminal Servers, which are deployed every week.
The want to preconfigure the MC to avoid the SGN MC config wizard every week at every machine.

If a SUM is hosted inhouse and external UTMs connect only Hosts/DNS-hosts are allowd as destination system (SUM).

If the main WAN connection fails, configuraton can not the altered using the SUM (e.g. to redeploy VPN tunnels to a backup connection (so switch the Tunnel interface))

It would be helpful to have DNS-groups or Availability groups enabled for this purpose.

I understand that the SUM has to be unique for the management to work. So this might be an issue that requires the admin to understand what he does, but the current configuration options do not allow easy failover

Change object type on SUM for network definitions.
For example: On a SUM-Server it would be very useful to change an object from a Host to a DNS-Host or DNS-Group. This would give administrators the possibility to change objects without revisiting any UTM where this object being used.
Of cause there are situations where it is tricky to do it because some configuration fields just allow certain objects but an error message could be helpful here.

Provide variables to show the authenticated user name, group membership and filter assignment when customizing the Web Message->End-User Message description. This would allow the user and admin to quickly see that the user was authenticated properly and the group membership is correct.

Currently the hostname is used to identify the UTM in SUM. You then need to go into that unit on SUM and edit the Registration with a Friendly Name. It would be nice on the UTM under Central Management to add a Registration Name. This name would then be used in the SUM Server to identify the UTM.

It would be a good thing to have to possibilty to predefine e.g. firewall rules, vpn connections, clientless vpn connections, users or whatever and activate them at a special day and time.
For example a bunch of new emplyees start their work at 1st of march - so the admin can predefine their users, rules and remote connections for them to be active 8am at 1s of march.So he will not forget that things during the daily business at 1st of march.