When opening central Dashboard i like to click in the graphic or any other number like "not protected" to view Clients or pc's are affected. It is not possible to filter the list at People or Computers to see "not protected".

It would be more helpful if there was a way to manage multiple keys when you need to encrypt USB drives with multiple clients. You do not want to use the same key/password for all USB devices, which is the default. You need to go into each file and change the key used if you want it to be something else. A prompt when putting in the USB, after you say Yes to encrypt, that asks for which password would be helpful. Maybe an option that turns the prompt on and off based your needs.

I would like to request your team to add the selection of groups/container upon exemption on Device Control Policy. This will give ease on tedious process we have right now in which we will have to access each group policy and exempt the same device. On the email sent earlier, I have attached sample image, hope you can consider adding that to your features not only on device control policy but also to other policies that may apply the same for easier management.

Upon the installation of Sophos Mobile, there is a point where you are asked if you want to turn ON location and the choice is either “Never” or “Always”. This should NOT be
an option, when it comes to corporate own products, it should be “Always” by default on a Cell phone. Can your development please update the app or generate another installation with that setting enabled by default and grayed out.

Currently, we block all removable storage unless permitted by exemption. We would like to turn on device control for MTP/PTP but we cannot do so in the same policy unless we block it the same way as our removable storage. Please make Device Control more granular so that I can choose to block certain device types entirely, while still enabling me to detect *but NOT block* others (such as MTP/PTP). I want to be able to detect MTP/PTP for a few weeks to see what devices are being used before I block them.

We have implemented device control on the network. However, the services of current version of Sophos Endpoint Security and Control (10.3) can be easily terminated by local Administrator users. This is painful for those non AD environment. It will be great if Sophos can consider to release patches or newer version of AV to prevent user from doing this.

The ability to Block USB printers from being connected to corporate devices. This puts HIPAA data at risk by allowing the user to print data on non- approved devices.

Be able to restrict devices to a certain wireless security type, such as WPA2 only.

When the customer plugs in a PC-DMIS dongle, they would like our device control policy to detect this specific device and be able to add an exemption for it.

There should be a way to bulk remove devices from Sophos Cloud. One way could be uploading a CSV file with device names to be removed.

Sophos Cloud use to have device control on Windows servers. Please add this back in, it's important to reduce the threat surface area of systems, especially servers.

Glue in the USB ports only goes so far!

Client would like the ability to be able to "Exempt device" in the device control event viewer when not using the "Default" sub estate

With an expected implementation of restricting use to solely encrypted flash drives for our company, add the Kanguru Defender Elite30 model series to the supported device list in the Secure Removable Storage category of Device Control.

Make the Device Control "Add Peripheral Exemptions" window sizable to see the ID, username and other valubles in full length. Its really hard to compare a ID with a mouse over.

Also add filters or search fields to search for a MODEL or ID or a specific username.

Control the use of Android devices when tethered to an OS X Mac