Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Uninstall and Repair Endpoints via Sophos Enterprise Console

    The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

    51 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      6 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
    • Force Uninstall Utility

      A support tech told me awhile back that you may be working on a utility to forcefully remove the software and all of its relevant registry keys, folder structure, services, etc. I think this should be made a priority as it seems we are constantly uninstalling and reinstalling only to have the same problems after reinstalling.

      Your KB article for a manual uninstall is insufficient.

      26 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        6 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
      • Tamper Protection Report

        Currently the only way to tell if Tamper Protection has been disabled for a device is Sophos Central is to view the Summary page of each device. My suggestion is to add a column to the existing "Servers" and "Computers" reports (under Logs & Reports -> Endpoint & Server Protection) that indicates whether or not Tamper Protection is enabled.

        12 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          3 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
        • Stop alerting when endpoint not updated in 2 days; Or make this configurable.

          We need to be alerted only on important conditions. Being alerted that a laptop has missed two updates (laptops are often off for more than two days) is not helpful and, in fact, may result in the team paying less attention to Sophos alerts. We need to be able to configure this or at minimum, please change the default. Thanks,

          28 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            2 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
          • alerts

            We get alot of alerts that state "One or more Sophos services are missing or not running" or "realtime protection has been disabled." We then have to go into Central and look up those machines only to find that 9 out of 10 times the alert has cleared itself. There is an Event Log entry that states "all services are running" or "realtime protection has been enabled." It would be nice to have an alert that is triggered from those resolved entries. That or be able to create an alert from Events contained in the Event Log.

            15 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              2 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
            • Give the user *some* kind of indication that a restart is required

              I'm getting multiple *Medium* level notifications per week about sophos endpoint clients that are "out of date". I now know, after two weeks of interactions with sophserv tech support that the issue has (and continues to be) that many computer users don't restart their computer because they don't have to, and the endpoint security client sometimes requires it, but doesn't tell them. They would happily do it if they knew it was necessary, but because it's not, I get pounded with multiple *Medium* level notifications per week indicating that their clients are out of date. This is super annoying, and …

              27 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                4 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
              • Make Real time scanning - Local files and network shares applicable on Linux

                Apparently the policy setting:
                "Real-time scanning - Local files and network shares" that can be configured for:
                on read
                on write
                only applies to Windows clients and not to Linux clients. On Linux you have to manually change the preference using eg:
                /opt/sophos-av/bin/savconfig set TalpaOperations -- -open
                to disable "on read"
                But obviously:
                1. This is not scallable
                2. This makes the Linux Sophos AV impaired in terms of feature comparison to Windows
                3. It's very problematic on eg. NFS servers where on open NEEDS to be disabled due to high CPU usage that sophos processes may spark.

                4 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
                • citrix

                  Add Customized location of install for Citrix Provisioned servers so the Main program can be installed in the Image and the IDE and other files that change often can be written to a different drive / location. Virtual Provisioning servers is not new and is growing rapidly

                  2 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    1 comment  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                  • Sophos Website To Check Whether Malware Is Known By Sophos

                    For Sophos to provide a site where subscribers can check for malware keyword names and provide information of the IDE that detects the malware and the date of introduction/update for the detection

                    2 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
                    • Puremessage

                      I’d really need to change the weight of the Spamdetectionfilters in PureMessage for Exchange.
                      We get lots of legitimate Email coming across proxies and originating in private ip spaces.

                      Resulting in SXL_IP_PROXY 8,and SLX_IP_DYNAMIC 3 and the email gets flagged with a high spamscore.

                      We need a way to fix this, especially for our own Adresses *@mydomain.dom

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        1 comment  ·  Windows Server  ·  Flag idea as inappropriate…  ·  Admin →
                      • Windows Defender Security Center compatibility

                        It would be great to have Sophos Endpoint report its status to Windows Defender Security Center.

                        2 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • Sophos for Virtual Environment - Show GVMs in the Sophos Enterprise Console

                          Show GVMs in the SEC and that they are being actively protected. Also, which SVM they are being protected by currently.

                          Only having the SVMs visible doesn't give the same level of confidence as the older fat clients.

                          9 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            1 comment  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
                          • Computer Group reporting functionality

                            Why can you create computer groups in the portal, but are unable to run a simple report to see all the devices in the groups that were created?

                            Further more, why is there not a way to run a report to see what computers have the "Intercept X" software applied?

                            7 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                            • Be able to classify certain alerts, such as a medium 'Reboot required after software update' as informational.

                              Be able to classify certain alerts, such as a medium 'Reboot required after software update' as informational.

                              16 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                              • Sophos Live Protection - Proxy Authentication

                                Sophos Live Protection doesn´t work with our Proxy and we can´t use it.
                                Our Proxy need a Windows Authentication, can you add the Function to Live Protection?

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                • device control

                                  We have already set the default policy for
                                  device control and these policies are applied on one of the particular group, but
                                  when user from this group wants to access printer or dongle such devices are
                                  getting blocked as they are not storage devices. Every time we need to exempt those
                                  devices . Our concern is that we want these devices(Printer, Scanner, Dongle)
                                  allow automatically for the user without need of any exemption. and this feature is not available on Sophos antivirus.

                                  Kindly provide solution for it asap.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Queue Installation/Remediation Commands

                                    Provide the ability to have requests/commands to clients queue. Currently the console appears to "fire and forget" when attempting to send remediation tasks/updates to clients. So a client that has registered an event/alert and is not online requires constant monitoring for when it does come back online.
                                    Set the capability in the console that tasks allocated to clients will queue and then be processed the next time the client comes back online

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Service Startup Timeout Adjustment

                                      Allow the ability to adjust the threshold time for the "One or more Sophos services are missing or not running" alert.

                                      Many times I have investigated this alert, only to find that the machine had just rebooted, and the services were in the middle of starting up when Sophos generated the alert. By the time I got to the machine, all the services were running and apparently healthy.

                                      Being able to adjust the timing of this alert will save us having to chase down false positives.

                                      2 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Which Web browser used in Web Events

                                        It would be nice if we could see which web browser was used in web events. This would be helpful for us so we can make sure everyone is using the approved browser

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Sophos Home Beta - "Reboot for Update" Notification - Disable or Mute

                                          Today I've got an update notification that told me to reboot to complete the update. Although I usually don't mind this, it threw me out of the game I was playing (full screen, DirectX 12 application). I clicked "remind me later" and went back into the game. This happened again after around 30 minutes and I decided to just leave the message there, which fixed the issue of the game being minimized.

                                          Although a reboot seems to be required for certain updates it would be nice to be able to disable or mute the message - or that it does…

                                          8 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            1 comment  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 36 37
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.