With the advent of the Surface Pro X, there is becoming a push for more 2-in-1 devices to work on ARM technology (as is found in most cell phones and tablets) to run full Windows OS's. However, there is no support for Endpoint Protection (Cloud or On-Prem) for these types of devices. I would like to see an Endpoint Protection package (Anti-virus, firewall, application control, etc.) that will support ARM processors.

Create a possibility to have schedule for endpoint protection policies. Similar to how "During scheduled time" works in Sophos XG Firewall Rule.

Eg.:
Be able to block gaming apps during work hours, but allow them after work hours.
Or allow Facebook after 7pm.

Geek Squad Supports provides 24 hours of service to help you out the complete procedure of downloading and installing the Setup. Geek Squad solving technical problems of your device. Geek Squad has given their toll-free numbers to support you anytime, anywhere. For more visit <a href="https://geek-squads.net/">Geek Squad Support</a>

more than half the tickets I get from our enterprise console are the need for reboots, please reconsider adding this feature and/or read the comments from other frustrated users of your software. Or even offer the ability to force a reboot after 1 week. Something besides sticking your head in the sand.

It would be nice for Sophos to have an offline installation. A number of remote sites in my case have very poor internet connectivity and having the installation files download during the installation process is tedious and unsuccessful in some cases.

When there is problem with Endpoint, and reinstall is needed, after uninstall, there is lot of registry keys, and files left on the system. On some cases, i have to grab 3rd party tool to remove registry keys. It would be really helpful for us (aspecially in large enviroments), to have complete uninstaller. Something, that get rid of everything, all files, all registry keys, so i can do clean installation.
Thanks in advance for your feedback.

Sophos is applying defitiion updates during the day and for some reason this is impacting our production workloads. It would be great to have the ability to schedule this, or define windows for acceptable update times.

Add Vivaldi browser as support browser for web control

Add user-based policy in Sophos Enterprise Console to block and allow USB access.

Flag a stolen or lost device in Sophos Endpoint.

Device can be locked down, possibly remote wiped or operation system disabled.

Notification sent to Sophos Central Admin when device reports in on internet connection.

For organizations with regional IT teams, it would be helpful if email alerts could be configured beyond just severity, product and category. For example, it would be useful if email alerts could be sent for events pertaining to a specific group or groups of computers. It would allow IT teams to only receive alerts for machines that they are responsible for. Alternatively, regex or string matching criteria would be super useful (more flexibility).

Thank you for your consideration,

Albert

Every time Exploit Prevention has an update, each computer ends up in the "Computers with Errors" field, because it needs a reboot. You can't acknowledge them to remove them from that list, and they won't be removed until they reboot. We try not to reboot our users computers unless we have a scheduled maintenance.
It would be nice if there was a distinction between an Error and a "reboot needed"

I check that report to see when computers are legitimately having problems, so when every computer appears in that list after an update, it kind of defeats the purpose.

When you go to override the Sophos Central Policy for 4 hours to troubleshoot you have the option to toggle all the various options off. The problem is that you can't toggle them back on (and it was confirmed by Sophos support that they don't support this yet). It seems to me it would be a better idea to turn each of those on and off (actually use them as a toggle especially since they look like a toggle and appear to act as a toggle).

Add Custom Applications:

Create a "Custom List" where specific exe's can be created and added to the blocked list when required. Ones of interest for us are;

SPDESIGN.exe
INFOPATH.exe

Would like to see user based web control on the Server Protection. Useful if your running session-based hosts for remote desktops.

To be able to make the Hero Report schedule-able and have the ability to send to email

Hi

I want to be able to apply an allowed group to users for specifically DVD drives and Mobile devices.

I have ended up creating 3 separate policies because you can only assign 1 group to a user.

Can you not make it a feature so if we want to create a dvd allow policy we can just add dvd to the policy for that group without having to block everything else?

thanks

Norton 360 is the best product of Norton. It provides a data backup facility so you can get your data back. It also provides parental control feature through which you can check which sites are opening in your Norton 360 connected devices. You can block those sites. Go to Norton to download Norton 360. For further queries, please visit <a href="https://w-wnorton.com/norton-360/"> Norton 360 </a>

We would like to use SCCM for upgrading (and potentially downgrading) the endpoint protection client. This is currently not possible and supported by Sophos since an upgraded agent will immediately downgrade to the version specified in the software subscription when connected to the Enterprise Console.