Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Device Control - USB Devices

    Is it possible to be able to restrict access to USB's my a unique ID - such as serial number?? Currently you can restrict my model but that doesn't stop an employee bringing in their own USB stick if it is the same make and model we us??

    Basically we want to be able to issue USB sticks out to staff and only allow those precise devices to connect. Not any device that happens to be the same model.

    46 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Create a remove it or uninstall app

    Create a remove it or uninstall app for sophos so that users who are not in the sophosadminstrators group can uninstall.

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Expand ID field in Peripheral Control to show full length Device ID

    In Central Reports and Device Control Exemption Lists, currently the full length Device ID is not shown. Even on mouse over, not all ID Data is visible in Central. On the Endpoint, the full ID Data is visible on mouse-over.

    Some USB removable media have long Identical Device ID with only a difference at the end. Currently, we can not identify the device in Central.

    Please make the ID field expandable in Central and store all data from the Endpoint in Central so that exemptions can be set specificylly without trial and error.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. Bulk add USB device IDs into exception lists

    We would like to be able to bulk add device IDs to enable easier additions into exemption lists.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Adding a Comment Field to the Peripheral Exemptions List

    It would be nice to add a comment field to the Peripheral Exemption List giving users the ability to leave a comment about the device. Users could leave a comment on who owns this device or why the device was allowed.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Device Control - Log All USB Connections

    We need to be able to log and report on all attempted USB device connections, whether successful or not, regardless if policy is being enforced or not. Currently, whenever the box marked 'detect, but do not block' is checked, you have the ability to report on all devices, but if the box is unchecked, and policy is set to allow all devices, you can't report on devices that successfully connected, only the blocked attempts are reportable. This needs addressed.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  7. [Device Control] - possibility to block usb-to-ethernet adapter

    Currently you cannot block usb-to-ethernet adapter.
    There are several usb-key attack-scenarios which use the ethernet emulation to sniff ntlm-hashes from a windows PC. Is there also a possibiliry to an option to block media devices like usb keyboards, usb mouse and/or cameras? Or an option to create your own device classes.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add Manual Exemptions and Use of Wildcards into Device Control for Removable Devices

    On Device Control you can only add devices that are in the Add Exempt List but what if you have a company with thousands of devices could we not add a wildcard for devices ?

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  9. Bulk Device Removal

    There should be a way to bulk remove devices from Sophos Cloud. One way could be uploading a CSV file with device names to be removed.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow the Read Only option for MTP/PTP devices

    Allow the Read Only option for MTP/PTP devices.
    This feature is usable in case the users attempt to access files storage in Smartphones or Tablets.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  11. Azure Intergration

    It would be nice that when you deploy the Sophos cloud endpoint protection on a Azure domain joined device the device get's automatically mapped to the user in the Sophos Central portal.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. Log exempted USB devices

    With the Enterprise Console version of the product, when a device control policy is enforcing blocks and allowing exemptions, the exempted devices do not show up in the device control logs.

    Please add the option to log exempted devices.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Expand ID field in Peripheral Control to show full length Device ID and the user name

    Hello

    We would like to request a small feature, which consist of adding a Cologne (User/last user) to the Peripherals Exemption(s)
    We are blocking all secure removable storage and adding exemption(s) for the devices we deliver to our users, while adding the exemptions we can see which the last users that used it
    once we add the exemptions we cannot longer identify a device, and therefore we have no way to found out to whom the devices listed in the exemption(s) list belong, we can't remove a device from the list because there is no way to identified it, we…

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. Application Control - Selectively detect/block by category

    Allow to select by category, instead of globally, to choose "block" or "detect" applications. From Customer:

    Today we have the Application Control Policy set to “Detect but allow to run” which has allowed us to see what applications are detected which we could be blocking. We very quickly want to turn this feature on to start blocking application types, specifically the “File Sharing Application” type to block things like BitTorrent and other P2P software. The problem is that when we move this category to block we have to remove the “Detect but allow to run” option for all categories. Now…

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. Auto Scan of Removable Devices upon Plugging In

    Removable Devices should be scanned automatically upon plugging so that normal users can have a clean flash drive every time they use it.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  16. Endpoint encryption of USB devices.

    It would be more helpful if there was a way to manage multiple keys when you need to encrypt USB drives with multiple clients. You do not want to use the same key/password for all USB devices, which is the default. You need to go into each file and change the key used if you want it to be something else. A prompt when putting in the USB, after you say Yes to encrypt, that asks for which password would be helpful. Maybe an option that turns the prompt on and off based your needs.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow USB Device by ID AND per User

    Central Endpoint: Is it possible to add a "layout" to except USB Devices by ID combined with a Person? So the Basic Policy could block any USB Device and Exceptions are made by Person instead of a Policy which allows the Device for many Computers or Users. So the exceptions is one by one (Device ID & User).

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Instant Unauthorized Device Alerts

    I would like to be instantly alerted when a user attempts to use an unauthorized device on the network such as a flash drive or mobile phone. Having to wait until the next day to see the attempt on a report is not providing us with a fast enough response time to eliminate a possible threat.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. Enable Fast user switching on Safeguard

    Enable Fast user switching on Safeguard, so that administrator users can access the computer without closing the current user's session

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  20. EXPIRATION DATE ON EXEMPTED DEVICES

    Would like to request to add expiration date of exempted devices, with this feature expired devices will automatically block/disable access but must have logs on DB as to when it was blocked or removed. This feature will also minimize the number of unused exempted devices on the Device Control Access list and give ease compared to manually disabling the devices. This would be useful for added security as user will not be able to access the expired devices on time once indicated on the expiration details.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.