Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Vote for an existing idea (150)
  • or
  1. Mail Alerts for service management tools /system admins

    Mail Alerts

    As attached file, there is no more details for related alerts.
    Please add more details for attached alerts which is appeared on console screen. By the way, in ITIL framework I want to use one of mailbox to check alerts and creating incident when mail arrived on related mailbox. So you application is not compatible for service management tools to reduce admin operation. Your application is required to daily login console to check all alerts. So I want to save time for admins.

    In this case , as I explained on smtp configuration ,…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Windows Server  ·  Flag idea as inappropriate…  ·  Admin →
  2. Alert mail description modification

    One of our Platinum Customer is raising a feature request.

    When the Antivirus policy is set to send a mail, due to a virus detection, they would like to have the alert display the IP address of the infected host, and the exact group path into the console.

    The alert messages are currently hard-coded, but it could be useful to let user set according up to their need the content of these messages.

    It could be useful to do it for any alert message, not only on Virus detection.

    Not sure if it could be technically done, as the…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Manage email alerts

    Would be nice if it's possible to simple change what is triggering mail alerts, how often, and perhaps include mail alerts to non-admins.

    In general a basic opportunity to control what generates a mail alert and to disable the alerts you don't want to see. Seems a rather basic function to have missing in a enterprise product really.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  4. Only high alerts by mail

    Good morning

    Is it possible to receive only to high alerts by email?
    And the rest of the alerts in the portal

    Thanks and regards
    Titus Davidheimann Beek

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  5. Separate Policy for Alerting

    When working in large environments with several sub-estates it would very useful having a separate policy for the alerting via E-Mail or SNMP

    Typically components of the AV+HIPS policy (e.g. Exclusions) can be reused in the sub-estates but in scenarios where have to alert different groups of administrators it would improve the usability when we could provide a separate alerting policies.

    So we would have a much smaller count of AV+HIPS policies and only one alerting policy per sub-estate.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  6. email alert

    More details in the email alert sent out by Sophos Enterprise Console related to Virus/Adware alerts

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. central alerts

    Sophos Central Alerts can be overwhelming. I need the ability to clear all alerts without checking on the 5000 alerts individually. I'd like to see just red alerts where Sophos could not clean up the issue. We see red alerts even when the issue has been resolved. So if it had been resolved it could change to a different color to still be able to see that there was an issue, but it doesn't need attention. Working for a school district we need to manage Sophos easily and efficiently due to time constrictions. Thank you!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  8. alerts

    We get alot of alerts that state "One or more Sophos services are missing or not running" or "realtime protection has been disabled." We then have to go into Central and look up those machines only to find that 9 out of 10 times the alert has cleared itself. There is an Event Log entry that states "all services are running" or "realtime protection has been enabled." It would be nice to have an alert that is triggered from those resolved entries. That or be able to create an alert from Events contained in the Event Log.

    21 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  9. Email alert monitoring

    SAV for Linux / UNIX does not try to send unsent alert Emails until it restart sav-protect or get any alert email event(like find virus/error/on-access not work and so on)
    But if there is no above event happens the email alert kept for a while.
    Could you think about email monitor to send unsent emails like savfeedback? once per week will be fine.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  10. Email Exploit Prevention alerts like Virus \ adaware alerts can be.

    Like Virus \ adaware and other alerts can be emailed to certain email addresses i think it would be a good idea if Exploit alerts could be set up the same and be emailed to certain adresses.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  11. Custom Alerting request

    We our a large partner servicing many clients. We need the ability to customize what email address alerts are sent to. Additionally, we need the ability to "tune" the level of the alert. Often we find HIGH alerts are false positive. Items like "policy compliance", or "real-time protection disabled" will come in as HIGH and will then self resolve.

    We want to be able to control what HIGH tickets are addressed by our NOC staff.

    This customization has become very important to us as we scale. Could Alert customization be "fast-tracked" to production?

    Respectfully,
    Jeff C

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Incident investigation  ·  Flag idea as inappropriate…  ·  Admin →
  12. Alert email

    Client wants that as an administrator, they are receiving the Alert email for Out -of-Date Computers Or with other Alerts setting email but this email doesn't contain the list of related endpoints and their description, which Admin wants to quickly look from the email rather than go and jump to console.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  13. advanced alerting for Application Control

    Have the ability to configure advanced alerts for Application Control. Including the option to alert once, not multiple times for the same application

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. Email alerting from endpoints

    Please implement a mechanism where clients machines authenticate against the SMPT server (Exchange Receive Connector) to send email alerts to the designated alerts email
    address. At the moment it requires anonymous authentication in the receive connector to send the alerts and thus exposes the SMPT server to be an open relay on the internal network – a security risk. Please build this into the Enterprise Console ehere we can
    set a specific Domain username and password to send email as and is then used on the client to authenticate and send email alerts. At the…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  15. Option for email alerts based on severity level

    Make it so that a user can customize email alerts to receive alerts by severity level. For example, a user can opt-out from low severity alerts while still receive email alerts for medium and high.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  16. Web Address in DLP alerts

    In DLP Alerts for files that interact with web browsers, is it possible to show the web address that the file interacted with?

    For example: a user uploads a file which trips the alert into Google Drive.
    The alert would show User, File Path, File Name, Application: Google Chrome, Web Address: drive.google.com

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Child SUM Alerting

    A Platinum customer asking if Dashboard alerts can be configured for all SUMs; "Last protection from Sophos" so email alerts can be sent if Child SUMs fails or errors but this only seems to do email alerts for the SUM that downloads from Sophos and not the child SUMs that update from their parent SUM.

    Basically, child SUM update from it's parent but a distribution or the whole of that child SUM fails with some sort of error, customer would like to know about this.

    Can this be added to the product?

    Thanks,

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  18. tiered view of Alerts on client posts

    would like to see tiered effect on alert so that if an alert has a post and then Sophos AV addresses, it will keep the "cleaned" post on top and plus sign of timestamp of the alert below. right now each action is separate line and if user has multiple PUA or malware alerts, it is a bit confusing to address

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  19. clear multiple alerts

    From Cloud Console, Status Tab, Alerts section, it would be great to have an option to select multiple alerts and clear them/acknowledge them all at once. If I'm addressing an endpoint with multiple actions, I have to go through one by one and Mark as Resolved. At the very least they could be grouped so that I don't have to confirm multiple instances of the same persistent file being cleaned up because another infected computer on the network is dropping a file on it and Sophos is deleting it. If this happens after hours I could have 20 of the…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  20. Allow email alerts in cloud to have more control

    Allow email alerts to have more control of what's being alerted. Right now we're getting alerts for machines that need to be rebooted, yet they're being reimaged so they will get rebooted anyway.. Rate this as a 3.

    20 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 6 7 8
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.