Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Uninstall and Repair Endpoints via Sophos Central (was SEC)

    The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

    156 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  11 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Anti Virus Schedule Weekly or Monthly

    Add an option to scan (besides daily at certain time) weekly of monthly. Some scans on large drives take a whole day and don't need to be scanned weekly but rather 2 weekly or monthly.

    93 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  3. Deletion of Central Accounts

    If a customer or Partner decides to not go for Central he should be able to delete the whole Central Account. This is to ensure

    a) all his data is deleted permantly (data privacy law with cloud based systems in germany)
    b) he can setup a new trial with the same Account at a later point (to see if the gabs being closed in a later release of central)
    c.) from the partner point of view - it keeps Partner Dashboard structured and makes it more easy to manage and keeps it clean

    81 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  7 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  4. SAML login support for cloud console

    This is a must have for many organisations web based tools. Also helps with SSO and multi factor logon requests which can usually be configured at the identity provider.

    80 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    21 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add option that forces full system scans after scheduled start is missed

    Hi,

    we've Sophos Endpoint Security and Control 10.3 running in a very large and distributed environment (3000+ machines). Not all of our computers do run at the time we configured a scheduled scan - as there are people that e.g. work only 4 days a week. Sophos AV currently don't care - so we've a lot of machines that does not meet our compliance requirements.

    Would it be possible to add an administrative option like 'Run task after scheduled start is missed'?

    BTW: Such an option even exists Windows Task Scheduler - so it cant be hard to create and…

    63 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  9 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  6. Block single peripheral, whilst allowing all by default

    In Sophos Central, you can block all peripherals by default - and then have an allow list

    You can't do it the opposite way round, where you allow all devices and just have a block list.

    When trying to create a Peripheral Exemption to Block a device, with the default being Allow, it says that "Exemptions cannot be stricter than global settings."

    This mean that for a particular customer, we have to Allow around 300 USB devices just to block a singular device which a user brought in with malicious content on.

    It would be good to just block a…

    55 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  7. uninstall and reinstall option

    for troubleshooting can be very useful uninstall or reinstall endpoint on multiple client remotely from management interface

    55 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. AV sample submission with Sophos Enterprise Console

    If I have a suspicious file which I want to deliver to Sophos labs for analysis I always have a risk.
    1. I need an established Internet connection to reach Sophos Upload portal.
    2. I need a mail-account (and also connection to the internet) to send the file.

    If the file is recognized as Mal/Gen I maybe cannot clean with the console, until a specific signature is created. So I have to upload this file. In worst case the file is on a remote location without IT on side.
    To get this file I have to connect to the machine,…

    49 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
    Under Review  ·  Karl responded

    As part of the policy controls for Sophos Live protection you have the option to enable auto sample submission to Sophos.

    The option to allow the identification of suspect files and then allow the administrator to periodically select which ones to send to Sophos is one of many options we are evaluating to improve sample collection from customers.

    In the interim sophos has added Sophos Clean, a new standalone next-generation malware detection and removal product that can be used on a machine that is suspected of being infected, but currently no detections are being reported. Sophos Clean is available for a 30 day evaluation at no charge. Often new malware that evades the existing detection models for the Endpoint can be captured through the signitureless detection capabilities in sophos clean. Sophos clean is a second opinion scanner.

  9. USB drives scanning automatically.

    We need an option that allows USB drives to be automatically scanned upon insertion.

    48 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  10. Progress bar for full scan

    Please add a progress bar for the manually triggered full scan (and an option to abort it). Just seeing "scan in progress" for ages just does not feel right...

    48 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    15 comments  ·  Next Generation Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  11. Device Control - USB Devices

    Is it possible to be able to restrict access to USB's my a unique ID - such as serial number?? Currently you can restrict my model but that doesn't stop an employee bringing in their own USB stick if it is the same make and model we us??

    Basically we want to be able to issue USB sticks out to staff and only allow those precise devices to connect. Not any device that happens to be the same model.

    46 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. May we set custom messages for the warning or blocking of file downloads as regulated in Web Control?

    May we set custom messages for the warning or blocking of file downloads as regulated in Web Control? I have a customer who would like to customize the message given with the warning for downloading PDF files. I know I can simply allow the file, but we would prefer to remain vigilant. The only way I can find to do this is through customizing a firewall's warning, but nothing within Sophos Central. Any ideas?

    The firewall article is here: https://community.sophos.com/kb/en-us/123361

    Original KB post here: https://community.sophos.com/products/sophos-cloud/f/sophos-central/91631/may-we-set-custom-messages-for-the-warning-or-blocking-of-file-downloads-as-regulated-in-web-control

    45 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Report of users who ONLY have Base Policy

    This report would tell us who needs to be put in groups to have custom policies applied. If new users are added and someone forgets to add them to a group, then after the fact there's no way of knowing without looking at every user's policies.

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. Tamper Protection Report

    Currently the only way to tell if Tamper Protection has been disabled for a device is Sophos Central is to view the Summary page of each device. My suggestion is to add a column to the existing "Servers" and "Computers" reports (under Logs & Reports -> Endpoint & Server Protection) that indicates whether or not Tamper Protection is enabled.

    36 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  15. Application Control - Selective detect/block aplications on the same policy

    On the Application Control, allow, on the same policy, to block some applications while keeping others as detect only.

    36 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
    Under Review  ·  Karl responded

    We discussed this when developing the application control policy for Sophos Central managed endpoints. At the time we decided to maintain feature parity with on-premise managed endpoints (SEC). While this capability is not available it is on our short list but does not appear on any planned delivery timelines at the moment. We evaluate and prioritize enhancements for the product multiple times per year.

  16. Central/Cloud Exclusions - Export-Import

    Please add the functionality to export personalized exclusions for servers and users/clients and then the ability to re-import them on a different server (group) or users.
    In order to facilitate batch export-import of long exclusion lists.

    34 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    12 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  17. Clear the local endpoint's quarantine.xml from the SEC server

    1. Please provide a way to clear the local Sophos quarantine through a managed Sophos update site for endpoints.
    1. Using this solution a customer can change the update policy within the managed console to the update site which would clear quarantine.
    2. Once quarantine is cleared the Sophos console would show it is cleared. (This is because clearing quarantine locally does report this status to the console.)
    3. Then the computers update path could be moved to another update location that does not clear the Sophos quarantine.
    4. Providing managed customers with a way to clear up the issues…

    32 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  18. MAC Address

    Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

    30 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  19. Automatic external drive scanning option

    Hi Team,
    I am working in the resller company. Every customers are concerning about this automatic USB scanning feature (If we insert the pendrive, then it should scan automatically all the files (or) the wizard should ask for the scan.
    So this would be good, if we had this feature.

    29 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Malware prevention  ·  Flag idea as inappropriate…  ·  Admin →
  20. Enhanced reporting within SEC

    Add additional reporting options within the on-premise management console

    29 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    7 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 52 53
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.