Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Setting Application Exemptions per device

    I'd like to request a way to allow an application to run on a single machine without moving the machine to its own folder, creating a new policy, etc…
    This feature would be ideal when we have one-off applications that we don’t want to allow all people to use.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Device Control on Servers

    Sophos Cloud use to have device control on Windows servers. Please add this back in, it's important to reduce the threat surface area of systems, especially servers.

    Glue in the USB ports only goes so far!

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Web Control for Servers

    Sophos Cloud use to have web control on servers before the product split. With the new server product you are unable to configure web control policies. These policies are extremely useful for terminal services and other remote access tools.

    Also a good way of stopping admins looking at 'unsavory websites' from a non-filtered source.

    It can't take much to add back, after all, it's already available for on-premises servers.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. Data Control - Add Cloud Storage providers

    Current endpoint data control policies do not detect cloud storage providers as a destination to monitor. More people are using cloud storage in favour of traditional storage mediums such as USB pens.

    It's important that Sophos are able to monitor and block data transfers to these destinations. When combined with SGN it would make for a powerful story.

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Allow user based policies in the cloud for thin client users

    Currently unable to set user based policies for thin client users. They are currently only able to support server policy.

    19 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  6. PuremessageContent filter exceptions

    Currently in puremessage it is only possible to put a rule in for the recipient in the content filter however this isn't that useful for us.

    For example.....macro virus are making a comeback and therefore we want to restrict (or possibly just delete) any emails containing those attachments. however some genuine customers will send attachments with macros and we want to allow those users to get through the content filter.

    The only thing we can do without any program changes are to either allow macros and give users the choice to run or not (very bad idea) or block them…

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  7. Launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups

    There is a known issue where launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups.
    It would be great if this was resolved and nested groups work. This is a compliance breakdown.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Create Preconfig able to set all preferences of SAV

    It would be very helpful to be able to set all preferences in SAV for Mac with Terminal to create a preconfigured installer. The options for the update location and the onaccess scan are not enough.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Re-protect computers automatically

    Although with AD sync SEC can install endpoint protection automatically to the computers, it tries only once to protect the machines. Sometimes if there was a netowork error SEC should try the installtion again, moreover this feature can be very useful if the security software was uninstalled from a machine. When there are a plenty of machines on the network it is difficullt to check if the automated installation was fine and/or re-protect the machines manually.
    SEC should try to install the protection several time in a week or something like this...

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. On-access scan ability to cleanup adware/pua

    Request for the ability in on-access scanner to be able to remove/cleanup adware and pua's automatically and not have to do it manually or use the scheduled scanner

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  11. In sophos cloud add group name column in event report.

    We have deployed cloud endpoint protection for more than 300+ machines. In the event report its just shows the following columns (Severity, Event, User, Device, & When) So we are unable to know the user belongs to which group.?

    Please ADD gropu name column in event report.

    Thanks.. :)

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  12. Cloud application control what isn't in compliance

    I get alerts that say "Policy non-compliance: Application Control".
    This information isn't useful, I need to know which application isn't in complacence, so that I can decide if I need to unblock it or uninstall the software.

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Delayed AutoUpdate

    We would like to see a feature to delay the autoupdate check on the Mac endpoint client. When Sophos starts the autoupdate process right away after a user is logged in, the machine can take a bit of a performance hit with all of the other processes starting up at the same time.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  14. merge all duplicate names into one device history

    As a feature request, it would make more sense if we had an option to merge all duplicate names into one device history. We use physical asset tags, and our
    machines are named from the tag numbers. We reimage machines and reinstall Sophos, so now we’re getting duplicates which is driving up our device count and hurting our effort to stay within our license limit.

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
    Planned  ·  Jonathan Giffard responded

    There are changes planned to the end point agent such that it is able to detect if it is a duplicate. If so, the endpoint generates a new id which leads to it being treated as unique.

  15. uninstall and reinstall option

    for troubleshooting can be very useful uninstall or reinstall endpoint on multiple client remotely from management interface

    81 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Ability to turn off local web protection when on-prem.

    Add the ability to turn off the web protection when on-prem, which would enable us to use the different web profiles offered by the UTM when on network.

    When off-prem the default profile which is already applied via the UTM to the endpoint would take over. The endpoint firewall settings get you half way to detect which network but doesn't have the ability to turn off and on the local web protection.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. Exempt device in device control event viewer in other sub estates

    Client would like the ability to be able to "Exempt device" in the device control event viewer when not using the "Default" sub estate

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Sophos Deployment Packager - Allow Secondary Location on "Full, Managed Packages"

    When you choose to make a "Full, Managed" package using the deployment Packager tool. The options for primary and secondary after grayed out as it assumes that the machine will soon get its policy for updating from the management server. I suggest we allow for a secondary location to be set for machines that will not be communicating with the management server for some months but will have sporadic internet access.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Automatic external drive scanning option

    Hi Team,
    I am working in the resller company. Every customers are concerning about this automatic USB scanning feature (If we insert the pendrive, then it should scan automatically all the files (or) the wizard should ask for the scan.
    So this would be good, if we had this feature.

    44 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Malware prevention  ·  Flag idea as inappropriate…  ·  Admin →
  20. Include total # of licensed endpoints in SEC dashboard

    SEC does not list total # of licenses related to a customers instance. Instead, support has recommended we go by "managed endpoints." When purchasing additional licenses or installing to new machines, it would be nice to see exactly how many agents we have left to push out.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.