Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

It would be nice for Sophos to have an offline installation. A number of remote sites in my case have very poor internet connectivity and having the installation files download during the installation process is tedious and unsuccessful in some cases.

I'd really like it, if under Computer Management -> Manage Computers, it show the last update/login date of the computers in the list.
This way it would be easier to keep track of old systems that are no longer updating.
I'm sure that this also would be useful in the full version, for administrators to keep track of systems that are no longer using/need licences.

We're constantly having hosts that have a status of red because Sophos is falsely reporting that "Running malware in quarantine or cleanup failure" Can we fix this or have an automated process to delete the events.db?

Receiving an email alert when a new item is added into the Threat Analysis Center would be a great benefit.

When there is problem with Endpoint, and reinstall is needed, after uninstall, there is lot of registry keys, and files left on the system. On some cases, i have to grab 3rd party tool to remove registry keys. It would be really helpful for us (aspecially in large enviroments), to have complete uninstaller. Something, that get rid of everything, all files, all registry keys, so i can do clean installation.
Thanks in advance for your feedback.

Sophos to include a way to alert Administrators to PCs formatted [MAC andress] devices so that we know when and where a device has been formatted and whether or not Sophos has been reinstalled if it has the MAC information with the discovery of Sophos network.

Is it possible to be able to restrict access to USB's my a unique ID - such as serial number?? Currently you can restrict my model but that doesn't stop an employee bringing in their own USB stick if it is the same make and model we us??

Basically we want to be able to issue USB sticks out to staff and only allow those precise devices to connect. Not any device that happens to be the same model.

Sophos is really good at finding malware, but not so good at cleaning it up. Half the time it requires, "Manual Cleanup." If it had better/more powerful removal capabilities, that would be fantastic.

Apparently Mac OS is not currently supported by Sophos Endpoint DLP. We have a decent number of Mac laptops in use in our environments and have a need to protect PII. Please consider building out the DLP module to support the Mac OS.

Currently you cannot block usb-to-ethernet adapter.
There are several usb-key attack-scenarios which use the ethernet emulation to sniff ntlm-hashes from a windows PC. Is there also a possibiliry to an option to block media devices like usb keyboards, usb mouse and/or cameras? Or an option to create your own device classes.

It would be helpful to be able to start an SDU through Sophos central instead of having to connect to the computer in question and start one.

Endpoint added in multiple groups, so in case will apply update management policy don't use caches for the endpoints, those are already a part of different group or groups for protection, web and application control policy.

I am looking for a policy that will go over the programs running on a server and provide alerts if there seems to be a rogue process that is being started. I thought the whole AI thing that Sophos was known for would do analytics on the servers/endpoints to alert if something seemed not normal.

We are using the device control feature to block USB drives in most PCs and created sub-groups to allow certain PCs to have USB Access.
Currently there is no reporting on how many computers have USB access allowed and how many have it denied, so kindly let us know about this feature

We need more control over the user roles. Should allow super admins to have full control over the Roles, and pick and choose what the "admin", "helpdesk", etc... roles have access to. For example, we don't want anyone but super admins, to have access to "Account Settings", but there is no way to disable that for the specific roles...