Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Offline Installation

    It would be nice for Sophos to have an offline installation. A number of remote sites in my case have very poor internet connectivity and having the installation files download during the installation process is tedious and unsuccessful in some cases.

    41 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Flag idea as inappropriate…  ·  Admin →
  2. Data Control Policy - Add Microsoft Edge as a destination

    Currently Microsoft Edge is not included as a destination within the Data Control policy for the on-premise Enterprise Console.

    25 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Email scheduled event reports for Sophos Central

    Sophos Console was able to email a monthly report of all or specific events. I would like this same feature in Sophos Central.

    23 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  4. TPM State

    Since we can see TMP State on the client, why not have that same data present at Sophos Central. That way you can create a group from that value and have those machines encrypted.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  5. Proxy support for Sophos Management Communication System with the Sophos Cloud Solution.

    In short the Issue that some of our customers are raising with Sophos is that when an Endpoint managed agent looks to get an update from a cloud managed estate, it needs to authenticate to a proxy then our Sophos client is unable to feed the Proxy with the relevant authentication details thus blocking our clients from updating within these types of environments.

    65 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  4 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  6. Add firewall to Sophos Cloud

    Sophos Cloud console does not have a Firewall component. I would like the ability to enable and disable ports on my endpoints. This feature should include TCP and/or UDP ports, specific ports, port ranges, commonly used ports (windows file sharing, website port 80, secure website port 443, etc)
    Also the ability to enable or disable specific applications to use specific ports, similar to application control feature.

    34 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  7 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ability to email reports e.g. weekly or monthly on specific events or users from Sophos Could Console as per the site based SEC feature

    Provide the feature to email reports e.g. weekly or monthly on specific events or users from the Sophos Could Console, as per the site based SEC feature.

    86 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  25 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  8. Re-implementation of “Per process” exclusions for Anti-Virus scanning in Server 2012

    Sophos Product Information
    Sophos Product: Sophos Endpoint Protection (antivirus client)
    Version in Production: 10.3

    Feature Request Summary
    Re-implementation of “Per process” exclusions for Anti-Virus scanning.

    It appears that this hidden function of the endpoint client no longer operates in Windows 2012 (see the support case that gave rise to this request #5147863).

    It would in fact be useful to formalise and document the functionality, as well as provide easier access to it.

    How will this new feature address your business requirements?:

    We would use this feature to avoid impact on backup speed where on-Read scanning is enabled on systems.

    On-read…

    26 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  13 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Sophos for Virtual Environment - Show GVMs in the Sophos Enterprise Console

    Show GVMs in the SEC and that they are being actively protected. Also, which SVM they are being protected by currently.

    Only having the SVMs visible doesn't give the same level of confidence as the older fat clients.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  1 comment  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
  10. Sophos for virtual environment - load balancing

    One of the features of virtual deskops is the provisioning from many desktops with one or few templates. In the installation process from the Guest VM agent I must input the adress from a SVM. So all my Guest VMs are scaned on this one sophos security VM only. This is not good for safeguarding against failure and especially for load balancing between the SVM's. I would prefer a solution analog sophos AV for vShield, that the scan tace place on the SVM from the ESXi Host where the Guest VM run or similarly.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
    Completed  ·  Mark Toshack responded

    Within SVE 1.2 we released GVM migration capabilities to ensure that if a SVM is overloaded/down then the GVM will automatically migrate to another SVM for protection.

  11. Server Update Cache for Windows Server 2016

    Windows 2016 server this server cannot be selected to use as update cache

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  1 comment  ·  Windows Server  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos Central - View Devices by Installed Components

    So the only current way to see installed components is via Devices > Computers > Manage Endpoint Software but this view is very limited.

    Can a drop down be created to show say for example -

    >Endpoints with Endpoint Standard
    >Endpoints with Endpoint Advanced
    >Endpoints with Intercept X

    Hope this makes sense.

    49 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  3 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  13. Linux server connecto to a cache server

    Actually the linux servers cant conect to a local cahce servers for updates, but for example when the servers can't access to Internet the signatures will be out of the date i could be better that the linux servers can catch the updates from cahce servers

    best regards

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  1 comment  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  14. per-computer policies for Sophos Central Cloud

    in addition to per-user policies, add an option for per-computer policies (similar to the per-server policies)

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →

    We have added the ability to create per-device policies in Sophos Central. This applies to device encryption and all policies within the Endpoint Protection area, with the exception of web control which we plan to add in future.

    You can’t change existing user policies, but you can clone them or create new ones to make new per-device policies.

    Thanks for your input!

    Jon

  15. Unify Wildcard Exceptions in Sophos Cloud Console

    We have noticed an issue when trying to add a wildcard file exception for *.001 (The extension used by Sage for Backup Files).
    We cannot enter this wildcard pattern for Global Scanning Exclusions or User Policies but we can add it for Server Policies.
    Please can you look to unify this to make things easier to manage, we did try raising this as a bug but technical support said the developers were unlikely to change anything unless it was put forward as a feature improvement.

    Thank You

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  16. Process Exclusions using SEC

    Sophos Product Information

    Sophos Product: Sophos Enterprise Console

    Version in Production: 5.4

    Feature Request Summary

    How will this new feature address your business requirements?:

    The latest SESC 10.6 agent has support for configuration of process exclusions configured at the agent level, but these cannot be configured by the Enterprise Console. We are in the process of migrating from
    a competitor product that has full support for process exclusions centrally, but this configuration cannot be migrated from the console and thus represents a feature gap; as local configuration across thousands of hosts in unfeasible.

    How would you rate the importance of…

    35 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  10 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Two Factor Authentication for Sophos Cloud Portal

    Two Factor Authentication for Sophos Cloud Portal needs to be added

    64 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  24 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  18. Feed the SIEM with Sophos Cloud events

    Within companies above 2/3k endpoints, a SIEM/logsearch tool is more and more common. For now we don't have a way to extract the events and insert it into those tools.

    I suggest the following:


    • Building an API in Sophos Cloud that can be pulled by SIEM tools from inside the company.


    • An option for pushing, to a configurable IP, those events in realtime through a syslog connection.


    • A consolidated log file within a specific endpoint where the SIEM tool can collect the events (the endpoint that will pull those data can be chosen like we choose the ones that will…

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  19. Heartbeat for Linux

    Just as important, if not more important than the endpoints are servers. It's vital that these are protected to the same or greater level.

    Heartbeat would be useful to tell that a Linux server or workstation has been compromised. Especially important for server exposed to the Internet such as web or email servers.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  1 comment  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  20. Add Imation IronKey D250 Enterprise 16GB secure removable storage device to supported Device Control list

    We recently moved over to Sophos for our enterprise security needs and we have a handful of the IronKey D250 Enterprise drives that don't appear to be supported in the device control policy list. The smaller capacity versions were recently added and it would be great to have this one added when possible as well.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID - Old - Do not use Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Completed  ·  0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.