Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. For the Cloud portal for Partners it would be great to be able to make global exceptions for all of our clients. Thinks like Labtech and Ka

    For the Cloud portal for Partners it would be great to be able to make global exceptions for all of our clients. Thinks like Labtech and Kaseya drop a lot of files that Sophos detects as PUA's (produkey/nircmd/psexec) that have to be re-mediated client by client event though they are all in the same directory. I'm thinking that in the area where you have tabs for account detail and alerting now there could be a global exceptions tab to push to the clients or a selected group of clients.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  2. Sophos Cloud - Allow to disable popup alert detections on the endpoint

    On the Sophos Cloud Dashboard, allow to disable the popup alert detections so that the detection information is displayed only on the Dashboard console.
    This same feature is already available on the SEC (On-Premise endpoint console) but not on the Cloud dashboard.

    19 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  2 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
  3. Application Control - Selective detect/block aplications on the same policy

    On the Application Control, allow, on the same policy, to block some applications while keeping others as detect only.

    39 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
    Under Review  ·  Karl responded

    We discussed this when developing the application control policy for Sophos Central managed endpoints. At the time we decided to maintain feature parity with on-premise managed endpoints (SEC). While this capability is not available it is on our short list but does not appear on any planned delivery timelines at the moment. We evaluate and prioritize enhancements for the product multiple times per year.

  4. Ability to add websites to internet browser based list of applications in DLP. To allow access to the site but restrict file transfers on th

    Ability to add websites to internet browser based list of applications in DLP.
    To allow access to the site but restrict file transfers on the site

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Be able to delete compressed files that have an infected file in them.

    Be able to delete compressed files that have infected files in them. Either as a default setting or as a option in the enterprise console. Many of the virus/adware that can not be cleaned are inside compressed files. In almost all cases deleting the compressed file is the preferred solution..

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Data Control

    Sophos Product Information

    Sophos Product: Endpoint

    Version in Production: 10.3

    Feature Request Summary

    Verification on content rules.

    Case reference - http://sophtrac/Default.aspx?caseid=4653988

    How will this new feature address your business requirements?:

    Better able to track user actions in incident and investigation scenarios

    How would you rate the importance of this feature?; 2

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  7. Separate Policy for Alerting

    When working in large environments with several sub-estates it would very useful having a separate policy for the alerting via E-Mail or SNMP

    Typically components of the AV+HIPS policy (e.g. Exclusions) can be reused in the sub-estates but in scenarios where have to alert different groups of administrators it would improve the usability when we could provide a separate alerting policies.

    So we would have a much smaller count of AV+HIPS policies and only one alerting policy per sub-estate.

    15 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Alert email

    Client wants that as an administrator, they are receiving the Alert email for Out -of-Date Computers Or with other Alerts setting email but this email doesn't contain the list of related endpoints and their description, which Admin wants to quickly look from the email rather than go and jump to console.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add option that forces full system scans after scheduled start is missed

    Hi,

    we've Sophos Endpoint Security and Control 10.3 running in a very large and distributed environment (3000+ machines). Not all of our computers do run at the time we configured a scheduled scan - as there are people that e.g. work only 4 days a week. Sophos AV currently don't care - so we've a lot of machines that does not meet our compliance requirements.

    Would it be possible to add an administrative option like 'Run task after scheduled start is missed'?

    BTW: Such an option even exists Windows Task Scheduler - so it cant be hard to create and…

    75 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  10 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow install of SAV on a different drive and allow option to install components on other drives

    Allow the option to select where SAV can be installed on an endpoint and allow the option to select where the components for SAV can be installed to.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  11. Removal tool for Eset File Security 4.5

    From customer:

    We are competing with other vendor very hard to move them to the Sophos cloud.

    One of the biggest competitors in Israel is ESET with is very common in Israel because it low price and a hard marketing work.

    When we win against them the first thing is to be able to remove the competitor.

    In the last few month we won in 2 SMB companies that both of the have around 350 workstations and about 30 servers.

    The first we moved from a customer from TrendMicro that we could not remove with the cloud software and we…

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  12. Endpoint only supports 2 Templates only

    Client deploying the web control policy through Enterprise console but web control policy defined in UTM.
    Currently, The EP only supports 2 templates: block and warn.
    However the UTM supports 3 actions: block, warn & admin override.

    Currently the warn page template for Endpoint is used for admin override, so the block & warn actions need to share the same template.
    Client wants endpoint must support at least 3 actions as well .

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Tamper protection for Firewall

    Large UK customer has a requirement for Anti Tamper client side Firewall

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Real time notification for updates

    Feature Request Summary

    How will this new feature address your business requirements?: Stop dealing with outdated error messages as they spook the customer

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 2

    Notes:

    This seems like less of a ‘feature’ to be requested and more of a bug to be fixed, but I have filled in the form regardless. I think an issue that occurred
    in the past and has been deemed resolved or superseded in this case by a succesful update then there is no need for a popup alert regarding this…

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  15. Createa an exclusion template for Microsoft recommended exclusions for AD

    Microsoft has a set of exclusions that it recommends for AD. As a starting point from which users could add/remove further exclusions, how about a template of exclusions to import into Sophos for Domain Controllers.

    10 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  16. If the situation of cidsync.upd being empty re-occurs, Software would automatically correct the problem.

    If the situation of cidsync.upd being empty re-occurs, Software would automatically correct the problem.

    Also, if CID won't get updated, there should be an alert/Notification

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  17. Registry key exclusion

    Can we add an option to exclude a registry key from on access scanning?
    Customer is using a third party software and its vendor recommended this.

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  18. Monitoring capability to see Endpoint scheduled scans are running or have been run (with timestamp) via SEC.

    Feature on SEC to view and monitor scanning on endpoints. Viewing on Computer Details when the last scan occurred (or started).

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Use of special characters in passwords for endpoint protection

    Sophos Product Information

    Sophos Product: Sophos Endpoint Security and Control/Sophos Enterprise Console

    Version in Production: AV:10.3 /Console: 5.3.0

    Feature Request Summary

    How will this new feature address your business requirements?: Allowing us to use special characters in our passwords will allow us to fully secure our environment.

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 2

    Please be aware that we cannot guarantee the proposed changes will be made or provide any timelines for the request. Sophos would like to thank you for your time and effort in helping us to build a…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  20. The Interactive Services Detection service terminated with the following error: %%1

    Server 2012 Windows event error:

    The Interactive Services Detection service terminated with the following error: %%1

    Possible to change the way our programs function with Server 2012 and future versions to no longer cause this error

    http://blogs.technet.com/b/homeiswhereilaymyhead/archive/2012/10/09/windows-8-interactive-services-detection-error-1-incorrect-function.aspx

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.