Remove self signed certificates and allow IT admins to install internal CA Cert
We are a PCI shop and the self signed certificates that Sophos AntiVirus generates are a pain in the posterior. They show up as vulnerabilities using Nessus which requires us justifying the risk to our clients. This seems rather unnecessary to me as most PCI shops have their own CAs in-house. If Sophos would give us the capability of importing our own certificates, life would be much better!