Are there any plans to implement a feature enabling you to manually run/force a patch update for a machine which has been off the network for a period as enquired about by me in ticket reference #5999756?3 votes
Security Configuration Asssessment (SCA)
Security Content Automation Protocol (SCAP) Scan is method for using known standards to run vulnerability and compliance scans. This allows the user to evaluate and secure their systems.
Each policy check can contain an optional compliance field that is used to specify how the check is relevant to different Compliance Standards specifications.
Scan based on:
Stigs (DOD) https://public.cyber.mil/stigs/scap/
Help to compliance with ISO27001, PCI DSS, CSC, NIST.2 votes
We suggest you to add the capability to do Vulnerability and Patch management for 3rd party software too, as some other competition AV software do.
OS & 3rd party software installation
Automates the creation, storage & cloning of system images – to save you time whenever your business needs to roll out new systems or update software on existing systems.2 votes
The way Microsoft classifies supersedence of their monthly updates and rollups leaves many of these patches being shown as needed in Patch Assessment. Microsoft doesn't classify the month only updates as being superseded. Can we have a way to hide updates in Patch Assessment that we know aren't needed? Otherwise it will eventually get too messy to be worth using.2 votes
With the latest need to ensure the latest OSs are patched and up to date, can Sophos supplement WSUS and identify whether endpoints are fully patched and up to date? WSUS is flaky at the best of times, Sophos is more reliable on talking to endpoints.2 votes
Update client software like Microsoft / Office / Adobe Acrobat / WinZip etc. etc. from Sophos Central.1 vote
- Don't see your idea?