In a highly secure environment, servers in the DMZ are not allowed access to the internal servers (including Sophos management). This hinders the updates, since the primary update server must be configured to the internal management server, and only the secondary server can be configured to update from the Sophos cloud servers directly. In turn, this generates false alerts that download of updates failed due to update server not being reachable.

My idea is to allows Sophos cloud to be the primary update server for these cases.

We want to allow read only access on floppy and optical drives, (secure) removable storage and MTP/PTP devices but restrict it to certain file types. For example: documents (PDF, DOCX, XLSX ...) and image files (JPG, PNG ...) are allowed but opening/copying executable files (EXE, MSI ...) and script files (CMD, BAT, PS1 etc.) are blocked.

We would like to Monitor/Block File transfers on specific remote applications like Zoom, Webex, Teamviewer, AnyDesk and alike using the Data Control Policy on SEC. On the current feature, only Skype is listed under the VOIP Application and no other options for Remote Applications.

Please enable Safeguard Enterprise to work with the 2nd factor authorization solution DUO (https://duo.com/) If both products are used on the same machine the single sign on in Safeguard Enterprise doesn´t work anymore.

Adding a customizable dashboard to Sophos Central Admin would give administrators the option add the widgets that they need for their daily work routine on the first page that they see when logging in. Beside the already available widgets (customizable) additions from the report section would be nice. A Reset to Default functionality should also be provided.

Sophos sends an e-mail when Real Time Scanning is disabled, but it does not notify when it is enabled again. This causes extra work for administrators, since they have to check machines if RTS is running, while the system could already have notified them that this is the case.

Please implement an option to let the system send an e-mail when RTS is re-enabled.

It will be good to be able to change DNS configurations - IP of DNS server and DNS suffix - of SVE appliances after deployments. I say this because right now I need to make these changes for an AD domain consolidation project where we are migrating from one domain to the other. The only resolution seems to deploy a new appliance. This is time consuming.

we blocked Github in endpoint but users are able to clone from command prompt or terminal. Please do the needful

For every Sophos customer, please vote to have the Data Loss Prevention feature for Mac OS. We are a majority mac-house. I am sure there are tons of companies that have Macs in their ecosystem -

Thank you Sophos for valuing your customer's suggestions.

I put a few machines in the test group to test the newest version but, want to go back to the version we are using in our environment. Apparently, this is not supported. I need to test before deploying. Please enable the rollback option. Even if it does require that we have to uninstall/reinstall.

Can you please create the same list of applications list so we will be able to block some websites like :

• Online storage

Sophos Central should show MAC addresses for connected devices.

Sophos Central allows us to create a policy that blocks the use of all web browsers. What we would prefer is to block all Intenet access without having to purchase an additional module that has this capability.

It would be handy if there was a way to submit a potentially malicious file from within the actual Sophos program; especially from an isolated machine. We had that situation come up recently and it was a real pain getting a sample off an isolated machine and transferred to another machine so it could be uploaded and submitted to Sophos. It seems like a no-brainer to just have that functionality built into the client.

Would be helpful to all the users of Central Admins, if they can send a alert to the users for whom any action to be done or if any policy violation has been done. This can enabled realtime monitoring and alerting of users.