The encryption module of Sophos Central will silently reset bitlocker recovery keys. if you are using the trial version of the encryption module, when it expires you will no longer have access to the recovery keys.

central should make it clear that it will reset bitlocker recovery keys, and also give you the option to back them up before the encryption module expires.

It would be great to allow the reverse of the current Device Control functionality, to allow us to 'Allow All' USB storage devices and then 'blacklist' a specific device.
Currently you can only 'Block All' and then allow a device.
The thought here is to backlist devices that are repeatedly re-infected by non-protected systems off-site and then brought back into the mix.

Prevention of execution of executable files (e.g. exe, com...) in context of removable media!

It would be useful to add a field for Website Category on the Log File Search Query Log Files page to further filter log searches. Useful for searching on client activity filtered by website category

Currently the UTM does not allow the administrator to force the Endpoints to run an immediate virus scan. I use this feature a lot in the normal Windows Endpoint Console to ensure a network is free of viruses after an outbreak.

Hello,

we have a UTM with all Subscriptions and now i'll like to remove GData from all Clients and install Sophos Endpoint Protection. I can set Friday 13:00 start scan but i can't shutdown PC if scan complete :(

It would be great to have the ability to disable the On-Access-Scans for a certain amount of time on the client.
E.g. via right click on the systray icon:
"Disable On-Access-Scans..."
"for 1 hour"
"until reboot"

This should, of course, only be possible for admins, perhaps only after entering the tamper protection password!?

I would like the ability to create sub accounts with different permission levels. For example, you can have account 1 able to unblock/whitelist and account 2 can perform updates etc. This would be great as you won't need to give out the admin password and no user will see or do anything they are not supposed to on the webadmin interface.

It is often more efficient to let the user install when it is convenient to them. Particularly when installing for the first time to remote users or using onsite support technicians without UTM access.

Allow for having a separate install schedule for servers for when you release a new recommended version, so that that portion of the upgrade can happen off hours instead of whenever you've released it to the update servers and we download it. Every time that happens, it causes quite a bit of havok here.

As you know technology has evolved very quickly, even social media platform such as Facebook, Google+, Linkedin, Twitter and etc. can also know as cyber threats and threats that can be prevented by early detection and containment before an attack towards a company. I would suggest by having a feature; social media intelligence gathering, for detecting, analysing, reviewing. Hope that you could consider this as a feature. Hope to hear from you soon. I hope this idea will favour Sophos in times to come especially if there is BYOD monitoring.

My customer had bought the Sophos Endpoint Protection Standard.
And Data protection function can not block the *.3dm file according to their need.
I have recently opened the session to Sophos support but still not up2date yet.

Now hope you up2date database for Data control on Sophos Endpoint Protection to block the .3dm file.

Please update as soon as possible. My customer are complaining about it!

Thanks in advance,

The Reporting Tool under Web Protection in the UTM does not show results for Google searches. I called technical support and they suggested I put this in on the feature requests. I do not know if this is necessarily a feature that does not exist or if there is an issue with the reporting function.

Don't send the Quarantine Report per single email address but per (domain) user. It's very much better for user with a lot of addresses.
If you are using more than one UTM as MX gateway, a central spam quarantine server was very helpful.

Given that Windows 10 has been exposed as spyware, how about an option to the Sophos software that blocks it? Of course, it's a bit of a long-term project in that, no doubt, Microsoft will be constantly changing the details of how the spyware works in order to defeat the many blocking schemes which will arise from various sources.

Please ....

We need :
- Export and import NAT and DNAT Rules
- Centralize DNAT and SNAT like EMS in TMG :-)

TMG can ...

Thks

Sophos Antivirus supports multiple Linux distributions. I recommend adding this client to the UTM Endpoint list so we can protect, manage and monitor security on our Linux servers and desktops