Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. ARM Processor Support

    With the advent of the Surface Pro X, there is becoming a push for more 2-in-1 devices to work on ARM technology (as is found in most cell phones and tablets) to run full Windows OS's. However, there is no support for Endpoint Protection (Cloud or On-Prem) for these types of devices. I would like to see an Endpoint Protection package (Anti-virus, firewall, application control, etc.) that will support ARM processors.

    184 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  27 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  2. Uninstaller

    When there is problem with Endpoint, and reinstall is needed, after uninstall, there is lot of registry keys, and files left on the system. On some cases, i have to grab 3rd party tool to remove registry keys. It would be really helpful for us (aspecially in large enviroments), to have complete uninstaller. Something, that get rid of everything, all files, all registry keys, so i can do clean installation.
    Thanks in advance for your feedback.

    53 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  3. Be able to classify certain alerts, such as a medium 'Reboot required after software update' as informational.

    Be able to classify certain alerts, such as a medium 'Reboot required after software update' as informational.

    26 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  4. Option to change how scheduled scan runs on battery

    Have an option in SEC/Cloud to delay or run a scheduled scan when system is not running on battery

    Example: Client sets up a scheduled scan to run at 7:30pm and users are running on battery. Have an option to delay this until a non battery power source is detected or delay a few hours/minutes

    21 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  5. Being able to download either .MSI or .MST installation files for Group Policy Deployments

    Being able to download installation files as .MSI or .MST instead of only .EXE This for a faster GPO deployment, and not having to use scripts and .bat files.

    21 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  6. Fix the uninstall of Sophos Antivirus so that it uninstalls ALL registry keys it installs as well as the folder structure in Windows.

    Fix the uninstall of Sophos Antivirus so that it uninstalls ALL registry keys it installs as well as the folder structure in Windows.

    It's quite annoying that your application cannot cleanup and uninstall the very software it installs.

    20 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  7. Block Google Quic on Sophos Central Endpoint Protection

    Allow us to block Google Quic protocol on Endpoint level since we can do it from the Firewall. This would allow us to block it from the agent instead of having to manually disable it on Chrome or setup a Windows Firewall rule to block 443 or 80 on UDP.

    18 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  8. mac

    With Sophos Anti-Virus client for Mac version 9.6.2 a new app has appeared in the /Applications folder, namely "Remove Sophos Endpoint". This update was download from Sophos onto our on premise Sophos Management Server and is being distributed to our clients. Along with many Mac admins around the world I am amazed that Sophos have moved this app from the one that is usually found in the "/Library/Sophos Anti-Virus" folder into the main Applications folder, especially when it is listed alphabetically above the Sophos A-V client app. Deleting the app doesn't work as it reappears at the next update, unless…

    17 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. List machines with tamper protection disabled

    There is no way to run a report or search for any devices that have had tamper protection disabled and it has not been re-enabled.

    15 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  10. Simplify Sophos Antivirus Endpoint process

    Up to now the Endpoint protection of Sophos requires many steps to be uninstalled.
    For IT managers it's time consuming having to:
    - stop the service auto update
    - check the list
    - uninstall program by programm all Sophos products installed by the EndPoint in order

    As an alternative solution the Sophos Support answered us to implement a script that does all the steps by going to the Windows Registry, extract each program uninstall key and... ok, it's more complicated than the standard procedure.

    I think in 2016 there should be a way for programs to be useful, usable and…

    14 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  11. Deletion of Sophos Endpoint on Client computers

    Getting endpoint components to function as expected involves removing the current installation of Sophos. Many times I have to resort to the Microsoft “Fix it” tool at https://support.microsoft.com/en-us/help/17588/fix-problems-that-block-programs-from-being-installed-or-removed to clean out the existing install, then deleting the “Sophos” folders in Program data and Program Files (x86). All this takes a lot of time.

    Support can be saved by having application (or script) that would obliterate all traces of the Sophos product on a client device much like one of your competitors.

    The benefits would be a great time saving and a more accurate ‘removal” of the product.

    A tool that…

    13 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  12. Isolation UX enhancement

    The current design of isolation UI for Windows is to pop up an alert on the notification area, which I assume Sophos utilizes Windows feature, then disappears after a short while. End users who missed this popup will be isolated from the network not knowing why it is happening. Isolation can be initiated by sysadmin in the EDR feature, but can happen unexpectedly if auto-isolation is enabled and an endpoint fails in red status. This unwanted event is occasionally observed mainly due to one of Sophos service failure - Central Device Encryption is the most observed. If the isolation message…

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  13. IPS on Endpoint - Heartbeat XG IPS offloading

    Having now IPS on Endpoint, means that behind an XG FW with its own IPS activated there's a certain overlap (double check) of certain IPS patterns.
    Proposal: use the heartbeat (synch security) to check whether or not the endpoint is sitting behind an XG FW with IPS enabled. If so, the endpoint doesn't have to check them again and can save some resources.

    12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  14. central installer server check

    Sophos Central Installer checks server availability. Somehow that check was passing during last week's outage when Sophos servers were not able to complete installation and protection. The installer's checks should verify that all resources are available for protection to succeed, so that the installer is not able to uninstall existing protection and then fail, leaving endpoints unprotected. Moreover, Sophos needs a switch to flip to force this check to fail the next time they have a catastrophic outage like they did 11-14 July.

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  15. central endpoint client reboot indicator

    Can you make the Sophos central endpoint client systray icon flash yellow when the client requires a reboot - the end users are not prompted to reboot unless they open the client status page (which they do not !!!!).

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  16. Client firewall verify reputation and integrity through code signing certificates

    Actual process reputation trusting executed by client firewall relays on checksum verification. An application checksum can quickly change as effect of software updates or minor changes, this leads to long times spent whitelisting new checksum. Removing the checksum check is not an acceptable option beacuse this would also remove a security layer. The use of verification of digital signature of application certificate could leads a better way to trust\untrust procesees in such way as IE does with SmartScreen® & Extended Validation (EV) Code Signing Certificates features.

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  17. 11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  18. On-access scan ability to cleanup adware/pua

    Request for the ability in on-access scanner to be able to remove/cleanup adware and pua's automatically and not have to do it manually or use the scheduled scanner

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ability to scan and block google chrome extensions

    The ability to scan/block google chrome extensions added by users. Currently we can scan the files that are put onto the C drive but we can't block them as they are not .exe files

    11 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  20. Remote sdu

    It would be helpful to be able to start an SDU through Sophos central instead of having to connect to the computer in question and start one.

    9 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 8 9
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.