Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

Central/Cloud Exclusions - Export-Import

Please add the functionality to export personalized exclusions for servers and users/clients and then the ability to re-import them on a different server (group) or users.
In order to facilitate batch export-import of long exclusion lists.

34 votes
Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)

We’ll send you updates on this idea

CH shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

12 comments

Sign in
(thinking…)
Sign in with: Facebook Google Sophos Features & Ideas Laboratory
Signed in as (Sign out)
Submitting...
  • Jeff commented  ·   ·  Flag as inappropriate

    has this ever been updated?
    the exclusion lists need to be exported and imported for many reasons!

  • AdminJon (Admin, Sophos Features & Ideas Laboratory) commented  ·   ·  Flag as inappropriate

    For those (such as MSPs) with access to the Partner Dashboard, please note that as of last Saturday (8th Dec 2018), it now has the ability to set up policy templates to use across multiple Central accounts (customers). So for example you can have 2 Threat Protection policy templates, one for "regular" servers and one for AD servers with AD related exclusions.

    We plan to bring this to to the Enterprise Dashboard in 2019.

    The customer admin console has had a "clone policy" capability for some time so it should be easy to copy an existing policy within an account.

    We don't currently have plans to add a bulk import feature to the customer console (or either Dashboard) but we can review this.

    I appreciate there are numerous reasons to need to add exclusions but please do be aware that we have automatic exclusions to cover some common apps, such a some MS Exchange and SQL versions:

    https://community.sophos.com/kb/en-us/121461

    So, you may find you do not need to add all exclusions, particularly ones you had in SEC (the on-premises Sophos management console), which did not have these automatic exclusions.

    It may also be the case that a given exclusion isn't needed, for instance it was needed for another security vendor, or was needed to address a bug now resolved. I appreciate it is hard to know what exclusions aren't needed, but something to bear in mind as a potential typing reducer!

  • Kenneth Nielsen commented  ·   ·  Flag as inappropriate

    +1 Agree - this is neccessary - both for comparing exclusions and verifying them (as the web console is terrible at that - with only mouseover showing full paths), and for importing to other tenant.

  • Michael Hill commented  ·   ·  Flag as inappropriate

    +1 on implementing import/export for exclusions

    We are an MSP and every time we onboard a new customer, I have to waste hours manually entering each exclusion 1 by one for both servers and endpoints. The time and frustration is completely unnecessary and Im sure this can be implemented pretty easily. Im surprised it was implemented the way it is in the first place. Way to go dev.....

    Please help. Your products seem to be eternally in need of improvement the last few years. Live up to your marketing and sales pitches...

  • Chris Greathead commented  ·   ·  Flag as inappropriate

    I absolutely agree with the sentiment of the previous commenters on this topic. It seems to be such a necessary function that IT Admins would need to perform on any AV product. Please implement this ASAP.

  • Scott commented  ·   ·  Flag as inappropriate

    over a year and a half and still no import exclusion functionality like this added to cloud. Kinda embrassing Sophos.

  • Pete commented  ·   ·  Flag as inappropriate

    +1 on this feature request.

    Administration is difficult and time consuming enough. Having a solution that relies upon manual repetitive data entry is archaic and painful. Doing your core job (AV) isn't enough. You need to provide the administrators the ability to do their job easily and effectively. The best product will be discarded if it's too difficult to operationalize or maintain.

  • Jeff commented  ·   ·  Flag as inappropriate

    has there been any movement on this request?
    a simple bulk text loader would make life much simpler for everyone!

  • Anonymous commented  ·   ·  Flag as inappropriate

    I have performed a number of Sophos Central migrations from SEC, and having to manually add each exclusion is a tedious and error-prone task.

    Please add this functionality ASAP.

  • Carlos Caraballo commented  ·   ·  Flag as inappropriate

    I have a bunch of policies, each one with their own set of exclusions. Exported all of them to txt files and... cannot import them on the cloud. Will probably spend days entering each one by one...

  • Thiago Palmeira de Carvalho commented  ·   ·  Flag as inappropriate

    It's absolutely stupid having to insert/configure exclusions 1 by 1 in a multi-server/multi-customer environment. SEC (On-premise) had the functionality of importing/exporting txt files containing exclusions so why remove it from Sophos Cloud?

    Instead of making things better, they manage to make it worse. Less hype and more functionality would be appreciated.

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.