Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. RBAC Granular Control For Groups

    Groups:

    Top Level
    >Sales
    > UK
    > Germany

    Have the ability for the user to only access Sales and Germany only, excluding UK. This will give them the ability to control these sub-estates only.

    Is this coming?

    1 vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
    • Uninstall and Repair Endpoints via Sophos Enterprise Console

      The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

      139 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        Awaiting Feedback  ·  10 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
      • Disable Tamper Protection through Command Line

        Hi,

        Somethimes, managing 1000+ or even 5000+ machine its difficult, even more if we don't have built-in features in the console to remediate/uninstall corrupt/broken installations.

        But, the main problem is not that. The problem is that we CANNOT disable Tamper Protection remotely to reinstall/remove Sophos AV, in the following cases:

        1) Console was erased/failed and there's no cert/db/registry backup (all Endpoint with Tamper enabled)
        2) Broken installations dont apply Tamper Policies (to disable it)
        3) Migrated console (don't have the old one).

        All this would be solved by having the chance to disable Tamper through Command Line. Example

        Case A:…

        14 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          3 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
        • On-Demand Scan from the Enterprise Console

          I'd like to be able to scan a client remotely from the Enterprise Console and watch the scan in real time or at least get the progress of the scan with the result when it finishes.

          1 vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
          • search for sever by IP address in Sophos Console

            searching for servers by IP will be great to manage if we manage hundreds servers.
            Hosting companies are not friendly with the clients hostname.
            It would be very useful to be able to search and identify servers.
            So please add the option under Server Protection > Servers > The IP address searching.

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
            • Restriction to Discover Computers

              Problem:
              We are using Sophos in a multivendor environment which contains over 200,000 clients. The "Discover Computers" button is available for every Sophos admin, because there is no option to restrict this feature. Regularly somebody who is looking for a client presses the discover computer button. Now every network device which is reachable will be imported into the Sophos Enterprise Console and listed as an "unmanaged device". If we don't restart the SEC, sometimes more than 200,000 “unknown devices” are listed in the default "unassigned" group. We can delete these clients but they will remain in the Sophos database until…

              27 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
              • Enterprise Console REST API

                Provide a REST (or other) API into SEC. Basic features such as creating groups, assigning policy, adding/deleting/moving machines would be immensely helpful. Nearly all major software applications now have some form of accessible API that allows common tasks to be automated. This idea was suggested back in early 2015, but sadly was denied.

                4 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                • AD Sync For Deleted Machines

                  I would be really nice to have AD sync to update when machines are deleted out of AD. As it stands right now, the AD administrator must inform the SEC administrator that machines have been deleted.

                  20 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                  • Web Control Email Alerts

                    Sophos Product Information
                    Sophos Product: Sophos Enterprise Console
                    Version in Production: 5.4

                    Feature Request Summary
                    How will this new feature address your business requirements?: We need to have the ability to receive Web control events alerts where the endpoint protection has blocked a threat.
                    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: Critical 5

                    5 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                    • In reports can we get in detailed report (eg. Out of Date Computers- Computer Name, Username, Location/group, IP Address, Last updated Date)

                      In reports can we get in detailed report like below:
                      1. Out of Date Computers- Computer Name, Username, Location/group, IP Address, Last updated Date
                      2. Up to Date Computers- instead of count can you provide all system details like Computer Name, Username, Location/group, IP Address, Last updated Date
                      3. Authority to select required column in all kind of reports which is available in Console so we can customize the same as per our need

                      4 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                      • https AutoUpdate

                        In order to add extra security to our company’s Sophos Endpoint (Anti Virus) Update proceedings I was going to change Primary update source to URL like described in the following link.

                        https://www.sophos.com/en-us/support/knowledgebase/38238.aspx

                        Nevertheless according to these two posts from Forum it seems not to be possible to call Update URL using HTTPS

                        https://community.sophos.com/products/endpoint-security-control/f/16/t/4332
                        https://community.sophos.com/products/endpoint-security-control/f/16/t/2630

                        Sending Credentials / Password without encryption is no option for us at all.

                        Thus it would be really helpful to have UpdateManagement working well with https.

                        23 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                        • AV sample submission with Sophos Enterprise Console

                          If I have a suspicious file which I want to deliver to Sophos labs for analysis I always have a risk.
                          1. I need an established Internet connection to reach Sophos Upload portal.
                          2. I need a mail-account (and also connection to the internet) to send the file.

                          If the file is recognized as Mal/Gen I maybe cannot clean with the console, until a specific signature is created. So I have to upload this file. In worst case the file is on a remote location without IT on side.
                          To get this file I have to connect to the machine,…

                          48 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                            Under Review  ·  Karl responded

                            As part of the policy controls for Sophos Live protection you have the option to enable auto sample submission to Sophos.

                            The option to allow the identification of suspect files and then allow the administrator to periodically select which ones to send to Sophos is one of many options we are evaluating to improve sample collection from customers.

                            In the interim sophos has added Sophos Clean, a new standalone next-generation malware detection and removal product that can be used on a machine that is suspected of being infected, but currently no detections are being reported. Sophos Clean is available for a 30 day evaluation at no charge. Often new malware that evades the existing detection models for the Endpoint can be captured through the signitureless detection capabilities in sophos clean. Sophos clean is a second opinion scanner.

                          • enable/disable scan of encrypted files or enable disable

                            hello,

                            we get so many notifications about scan errors with encrypted files. but it is useless for us. would be nice to disable this notifications, but not disable all notifications about scan errors.

                            Matthias Kurzer

                            3 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                            • uninstall and reinstall option

                              for troubleshooting can be very useful uninstall or reinstall endpoint on multiple client remotely from management interface

                              46 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                              • Sophos Firewall monitoring mode for windows 8 and 10

                                Instead of trying to reinstate the interactive mode firewall to create rule sets, enable monitoring back at the console. At least we can scan through and create a rule without having to add it manually. Thank you

                                4 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                • Microsoft Exclusion Templates (e.g. SQL, Exchange, AD,...) 3rd Party Backup

                                  I would really like the option to enable exclusions based on Microsoft Recommendations. Once a year I manually go through the published recommended exclusions for Microsoft and other software (e.g. backup) and ensure I have those in my exclusions. It would be great (and save me a lot of time) if I had the option to check which exclusions I wanted.
                                  This seems to already be partially implemented in Sophos Cloud Server.

                                  14 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Improve Wildcard Criteria

                                    Improve the Wildcard criteria for File Exclusions, inline with MS KB article KB822158.

                                    So that *.* or say Edb*.log can be excluded rather than having to open up the entire folder or a blanket exclusion on all files with the extension.log etc

                                    Thereby improving granularity and allowing exclusions to be very specific to named O/s files.

                                    Examples being:

                                    FileIDTable_*

                                    Ntfrs*.*

                                    16 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      Under Review  ·  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Cascading policies in SEC

                                      Add an option to have policies cascade to sub groups in SEC

                                      41 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        Under Review  ·  3 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Enhanced reporting within SEC

                                        Add additional reporting options within the on-premise management console

                                        28 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          5 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                        • SEC policy inheritance

                                          Customer want a inheritance of policies down SEC folder structure then he replaces a policy in a top folder

                                          8 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 8 9
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.