Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

active directory Group

Active Directory synchronisation is very limited, particularly in large environments. Proper Active Directory integration should include the ability to filter policies to specific Active Directory groups and even Active Directory sites (for update servers). Take the following example, based on my environment, here is the OU structure:
- Laptops
----- Finance
----- Agriculture
----- Education
- Workstations
----- Finance
----- Agriculture
----- Education

If we sync this with Sophos we lose the ability to give individual groups within each area different policies. So for example IT users in Agriculture need a different Device Control policy, so now we need an OU for that. Or if one of those areas is spread over multiple sites that have their own update servers we now need various OUs for each site.

Being able to apply a policy to an Active Directory security group solves these issues, the policy on the group should be applied AFTER the normal policies from that sophos folder.

18 votes
Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)

We’ll send you updates on this idea

John Scott shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

0 comments

Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)
Submitting...

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.