Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. MAC Address

    Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

    18 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
    • Block single peripheral, whilst allowing all by default

      In Sophos Central, you can block all peripherals by default - and then have an allow list

      You can't do it the opposite way round, where you allow all devices and just have a block list.

      When trying to create a Peripheral Exemption to Block a device, with the default being Allow, it says that "Exemptions cannot be stricter than global settings."

      This mean that for a particular customer, we have to Allow around 300 USB devices just to block a singular device which a user brought in with malicious content on.

      It would be good to just block a…

      39 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
      • Excessive requests to reboot endpoint clients in the Sophos Enterprise Console.

        It seems that the higher up the ladder that the user is, the harder it is to get them to reboot. The disruption that closing their many, many, multi-tasking windows left open as project or task placards, makes it extremely difficult for them to pick up where they left off.

        Then a week after I had convinced all of my users to reboot for an update, I had another warning in the console to reboot all of the clients again.

        And now two weeks later, I have a new warning to reboot the endpoint users for Hitman.

        If we keep…

        11 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
        • Option to delete files when it can't be cleaned by Sophos

          We have several site all around the world but Sophos is centraly managed which means that we cannot always physically go to client computers or remotely connect to them (because of time zone, bad internet connectivity, etc...).

          So when an alert for files like those is raised in the console:
          Manual malware cleanup required: 'Mal/VMProtBad-A' at 'G:\PortableApps\Sid Meier's Civilization V + DLC\CivilizationV_DX11.exe'
          Manual malware cleanup required: 'Mal/Sality-D' at 'E:\hasna .scr'
          Manual malware cleanup required: 'Mal/VB-OL' at 'E:\Data Dell.exe'

          I would like to be able to select "Delete" and not just wait that something happen. Currently the only option is "Marked…

          20 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
          • DLP Support for Mac OS

            Apparently Mac OS is not currently supported by Sophos Endpoint DLP. We have a decent number of Mac laptops in use in our environments and have a need to protect PII. Please consider building out the DLP module to support the Mac OS.

            9 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              3 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
            • Fix the Running malware in quarantine or cleanup failure indicator in Sophos Central

              We're constantly having hosts that have a status of red because Sophos is falsely reporting that "Running malware in quarantine or cleanup failure" Can we fix this or have an automated process to delete the events.db?

              6 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
              • Remote sdu

                It would be helpful to be able to start an SDU through Sophos central instead of having to connect to the computer in question and start one.

                5 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                • Uninstall and Repair Endpoints via Sophos Enterprise Console

                  The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

                  131 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    Awaiting Feedback  ·  10 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Disable Tamper Protection through Command Line

                    Hi,

                    Somethimes, managing 1000+ or even 5000+ machine its difficult, even more if we don't have built-in features in the console to remediate/uninstall corrupt/broken installations.

                    But, the main problem is not that. The problem is that we CANNOT disable Tamper Protection remotely to reinstall/remove Sophos AV, in the following cases:

                    1) Console was erased/failed and there's no cert/db/registry backup (all Endpoint with Tamper enabled)
                    2) Broken installations dont apply Tamper Policies (to disable it)
                    3) Migrated console (don't have the old one).

                    All this would be solved by having the chance to disable Tamper through Command Line. Example

                    Case A:…

                    14 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      3 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                    • Third party Software

                      We suggest you to add the capability to do Vulnerability and Patch management for 3rd party software too, as some other competition AV software do.

                      OS & 3rd party software installation
                      Automates the creation, storage & cloning of system images – to save you time whenever your business needs to roll out new systems or update software on existing systems.

                      2 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Patch Assessment  ·  Flag idea as inappropriate…  ·  Admin →
                      • Allow USB Device by ID AND per User

                        Central Endpoint: Is it possible to add a "layout" to except USB Devices by ID combined with a Person? So the Basic Policy could block any USB Device and Exceptions are made by Person instead of a Policy which allows the Device for many Computers or Users. So the exceptions is one by one (Device ID & User).

                        4 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
                        • Sophos Central Send Reports to Cloud (Sharepoint\Dropbox\Box\AWS...)

                          Currently, Event Reports only do 6 months of reports and gets sent via email.
                          I would love to generate .pfd's of all my reports but our attachment limit via email is 10MB

                          Could you not allow or link a URL to a Sharepoint\Dropbox\Box\AWS cloud storage share?
                          Sign in verify the user login then collect reports there.

                          2 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
                          • Biometric Compatibility Expansion

                            Allow users to login through Safe Guard utilizing Windows Hello and/or a wider variety of biometric devices (such as standard Dell/HP fingerprint readers, eternal reader brands, etc).

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                            • Assign server group membership using a configuration setting on the endpoint.

                              We use Citrix PVS (Provisioning Services) to dynamically create XenApp servers from one gold image.
                              I followed Article 120560. All good.
                              Where I have a problem is the Group Assignment in Sophos Central.
                              My base Gold Image servers are assigned to a group called "Master".
                              Now I boot one production server using the new Image.
                              It appears in the Unassigned list. I have to manually assign it to the "Production" group and Policies.

                              I would like to be able to either specify the Group in a configuration file or registry key that survives the procedure I follow in Article 120560. …

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
                              • Indication on the Sophos Icon by the time if a computer requires a reboot to complete update

                                When Sophos requires a restart of the computer to complete an update it would be really good if the sophos icon by the time changed to a yellow exclamation mark or something so the end user would know to notifiy system administrator that Sophos needed attention. Or they could just restart the computer.

                                5 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
                                • User-created policy can be disabled by settings, but remain enforced?

                                  In Sophos central, for some policy categories it is possible to set a user-created policy to enforced, but "disable" it from its settings.

                                  For example, suppose that in the Web Control section there is the base policy at the bottom and the user-created one above it. If the user-created policy is opened for editing, the very first setting is:
                                  Web Control: Enforce/Ignore the settings in this section of the policy

                                  This setting is different from the Enforce/Ignore policy on the far right tab. Hence, it may be the case that there is an "ignored" policy, which retains "enforced" status, thus…

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Tamper Protection, log "login" attempts

                                    We would like to know when someone attempts to disable tamper protection by trying the guess the password. Loging such attempts would enable us to be alerted

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Sophos Home Premium for Linux

                                      Sophos Home Premium is only available for Windows, why not for Linux and Macs. There are a large amount of Linux users that would value a Premium license for Linux home users. Not sure how secure is the free version of Sophos Linux AV. I'm sure users of Home Premium would valus te ability to see their Linux devices in the Sophs Home portal.

                                      1 vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  Flag idea as inappropriate…  ·  Admin →
                                      • On-Demand Scan from the Enterprise Console

                                        I'd like to be able to scan a client remotely from the Enterprise Console and watch the scan in real time or at least get the progress of the scan with the result when it finishes.

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Would like to have an alert when we get the event "Failed to install hmpa64: a reboot is required before the installation can succeed"

                                          Would like to have an alert when we get the event "Failed to install hmpa64: a reboot is required before the installation can succeed" or any other reason that result as rebooting the server or PC. When you have many servers, we can not check all the events on each server individually

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 48 49
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.