Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow Peripherial Reporting to be sorted by Date

    In the reporting section

    https://cloud.sophos.com/manage/reports/protection/peripherals/create/blocked

    Can the Date column be sortable (ascending/descending)

    Whilst it is possible to export to CSV and sort manually, this takes focus away from the product pane of glass and doesn't aid function

    If possible, it would be nice to be able to also "drill into" a blocked device and allow from this pane also.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Source IP Blocking

    Allow the endpoint system to monitor inbound ips / ports and allow policy base blocking based on malicious scanning for example nmap discovery.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. false notification on client computers

    The below message is popups on endpoint client computer, which is mislead to users about someone trying to accessing their computer even those user/system not trying to access, which is creating issue to IT department as well as put the question mark Sophos for wrong notification.

    Message pup up "Access request from computer computer name denied because it may be unsafe".
    I understood from support that this happen when if any system health is red. In that scenario, Sophos endpoint is going to take action in backend, not the end user.

    So, I recommend that this type of message should…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  4. Illegal Drugs Category Update

    With the recent legalization in places of marijuana/cannabis, can we separate sites marked as that from the Illegal Drug category for Web Control.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. wildcard exclusions for exploit mitigation

    The idea is to use wildcards or folder base exclusion to prevent subprocesses from Hitman monitoring. For example if "make" starts many of gcc tasks or any other part of the toolchain. It would be nice to exclude the hole toolchain.

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  6. Malicious Network Traffic: Whitelist by IP or Subnet

    For organizations that have scanners looking for known vulnerabilities and unpatched systems, we need the ability to whitelist our scanners. Currently, Sophos only allows exclusions of an IP address combined with a port number.
    As such, when my scanner starts looking for the next threat and uses a new port, my users get blasted with a notification that they don't need to be concerned with.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Malicious Traffic Detection (MTD)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Notifications for Required Restarts

    Hello,

    We would like our users to receive a visual notification when an update to Sophos Endpoint requires a restart of their computer. For example, a small pop-up in the bottom right-hand corner of the user's screen. We would like this notification to remain on-screen until the user performs the restart, or manually dismisses the notification. The reason being, we have many devices that go days or even weeks without being restarted after an update is installed, as the user is unaware that a restart is required.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  8. Bulk Inactive computer removal

    We really need the ability to remove computers in bulk. Every time we recompose virtual machines it creates a new computer object and leaves behind a duplicate computer name.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Include Serial numbers in our reports

    Add the Serial Number field to the device report and exported list. Usually the serial number is the only common denominator when running an audit.

    Right now my audit process is quite time consuming because I can't pull a device report with serial number.

    The Computer Report is quite useless without the serial numbers.

    It's kind of ridiculous that I can't create a custom report and pull the fields I require.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  10. Global Exclusions listed in SNTPService.log and Policy.xml

    Hello,

    When troubleshooting one of our endpoints I checked SNTPService.log and found out, that all global exclusions configured in Sophos Central appear in this log file.

    Log location:
    C:\ProgramData\Sophos\Sophos Network Threat Protection\Logs\sntpservice.log

    Additionally to the log file, these exclusions are also listed in the following config XML file:
    C:\ProgramData\Sophos\Sophos Network Threat Protection\Config\policy.xml

    To read these log and config files, no admin permissions are needed!
    So, if a client got compromised, an attacker just has to check these files to find out which locations on the file system are not monitored by endpoint security and might shelter e.g. malware without triggering…

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  11. About Endpoint/Server's Central Server status

    There is a information about Sophos Central dashboard page status.
    https://centralstatus.sophos.com/

    It is better to show Sophos Server/Endpoint's product server's status page like Central Dashboard does.
    Is it possible to add or create a page like this?

    So that customer can identify if their endpoint/server page has problem or not.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  12. Blocking Remote Support Application such as TeamViewer & Any desk

    Need to Block Remote Support Application such as TeamViewer & Any desk File Transfer ability to prevent Data Leakage via them.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  13. create

    We'd like the ability to confirm a medium/unhealthy status of a device and not have it populate within the dashboard. (IE: We have a spare laptop, we know that it is not online, but has Sophos installed)

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  14. Tamper Protection Report

    It would be very beneficial to be able to run a report on all devices that have tamper protection on/off.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  15. Installation Endpoint

    Good morning,
    recently I had big performance problems due to the HP Sure Connect software suite (software installed by HP similar to Sophos Endpoint) which after an update created performance problems on 42 laptops that were almost unusable. In my opinion we should prevent the installation of Sophos applications in the presence of similar applications that could create problems that are difficult to diagnose. Sincerely

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  16. mass promotion of servers / computers to update cache

    We are having more than 600 transaction offices. FOr sake of saving network bandwidth from these locations to Head Quarter, we need to promote some machines at transaction offices to be Update Cache. With the current situation, we must click one by one from GUI to make them done. It is so hard to do this task. I wonder Sophos should have some tools or scripts to support in escalating based on our lists. Thanks so much.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  17. Incompatibilidade entre Sophos x PaloAlto VPN

    Resolver o problema de incompatibilidade entre Sophos e PaloAlto VPN no modo Split Tunnel.
    Só é possível navegar, quando conectado no Client Global PRotect da Palo Alto, quando desabilitamos a proteção web control e Web Protection.
    Fazendo essa alteração para poder integrar as soluções, inviabiliza o antivírus, pois o Sophos perde umas das principais funcionalidades, gerando muita insegurança.
    Link para o KB: https://support.sophos.com/support/s/article/KB-000039289 .

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. disable installation of Chrome extensions

    Please also implementing disable installation of Chrome extensions in Sophos

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  19. Reporting and enforcement of MacOS native firewall

    Could a feature be implemented that allows enforcement of the native MacOS firewall, and also reporting of the MacOS firewall status (enabled or not) in Sophos Endpoint.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  20. Same block messages for HTTP and HTTPS websites from Sophos Endpoint Webcontrol

    We realize that the block messages for HTTP and HTTPS websites from Sophos Endpoint Webcontrol are differents. For http blocked websites, we get the default block message from web control policy. But for HTTPS blocked websites, we can't realize at that specific moment who blocked that page. We don't know whether that page was blocked by sophos endpoint web control policy or it was blocked by another third party security solution. We don't know even if that page was simply down because it showed up to us a normal web page like that page was off-line. I'd like to suggest…

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 67 68
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.