Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Sophos Home Premium Authentication Required for Management Console

    Dear Support Team,

    I have observed that whenever you open the Sophos Home Premium agent on the Endpoint (client computer), it has a settings tab located on it. I have observed that by clicking this settings tab automatically takes you to the Sophos Home Premium Cloud Management Console, without even asking or prompting for the username or password on the website, which is quite insecure I would say.

    That way anyone using the home computer can change the policies and security settings. I want to enforce certain restriction on the Laptops used by the kids. Since the settings tab does…

    4 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
    • Remote sdu

      It would be helpful to be able to start an SDU through Sophos central instead of having to connect to the computer in question and start one.

      6 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
      • Uninstaller

        When there is problem with Endpoint, and reinstall is needed, after uninstall, there is lot of registry keys, and files left on the system. On some cases, i have to grab 3rd party tool to remove registry keys. It would be really helpful for us (aspecially in large enviroments), to have complete uninstaller. Something, that get rid of everything, all files, all registry keys, so i can do clean installation.
        Thanks in advance for your feedback.

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
        • Force Uninstall Utility

          A support tech told me awhile back that you may be working on a utility to forcefully remove the software and all of its relevant registry keys, folder structure, services, etc. I think this should be made a priority as it seems we are constantly uninstalling and reinstalling only to have the same problems after reinstalling.

          Your KB article for a manual uninstall is insufficient.

          117 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            Started  ·  12 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
          • allow local and policy based exclusions to play nice

            Allow localized exclusions per machine/client to play nice with global policies from the management portal.
            Currently it appears that policy based exclusions prevent the ability to add additional exclusions at an agent or client level.
            It would be ideal to have the policy enforced when pushed out but still allow subordinate exclusions to be configured for end user networks and devices.

            For example:
            I have global policies that apply well to all clients but not all and as a result certain several clients have had to be purposefully removed from the policy target group. Having to reconfigure common exclusions for…

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
            • New report type : USB allowed/blocked

              We are using the device control feature to block USB drives in most PCs and created sub-groups to allow certain PCs to have USB Access.
              Currently there is no reporting on how many computers have USB access allowed and how many have it denied, so kindly let us know about this feature

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
              • Intercept X - SDU Tool - Troubleshooting Files Excluded

                While working with Support we provided the SDU logs for investigation. Sophos Support came back and requested some additional files not captured as part of the SDU tool. Please add an option in the SDU to include these sources.

                To obtain these files we needed to disable Tamper Protection, and copy the files ourselves.

                From Sophos Support:
                To further progress, we will also require you to copy, zip, and upload the following directories to our FTP. The reason we require these folders is because they contain the snapshots of the event in a .tgz format which our SDU tool does…

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                • When Threat Case is not created revert to Pre-Intercept X behavior

                  After upgrading to Intercept X with EDR in situations where are Threat Case is not created revert to the pre-Intercept X behavior of publishing the Detection Event as an Alert.

                  "Note: Threat cases are only created for malicious detections; this does not include detections for PUAs, Application Control, Device Control, Web Control. Additionally if Sophos isn't able to automatically confirm a root cause, a Threat Case may not be generated."
                  https://community.sophos.com/kb/en-us/125120

                  We've gotten a number of malicious Events which haven't created corresponding Threat Cases for hosts assigned to the Intercept X with EDR policy. Sophos Support mentioned a Threat Case…

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                  • User-created policy can be disabled by settings, but remain enforced?

                    In Sophos central, for some policy categories it is possible to set a user-created policy to enforced, but "disable" it from its settings.

                    For example, suppose that in the Web Control section there is the base policy at the bottom and the user-created one above it. If the user-created policy is opened for editing, the very first setting is:
                    Web Control: Enforce/Ignore the settings in this section of the policy

                    This setting is different from the Enforce/Ignore policy on the far right tab. Hence, it may be the case that there is an "ignored" policy, which retains "enforced" status, thus…

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                    • Allow CPU % limiting for Sophos Processes

                      Give the ability in Sophos Central to limit CPU usage for Sophos overall. This would apply to scheduled scanning as well as any process that is using high CPU at login. I want these things still happen but be less noticeable to users.

                      18 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                      • file type

                        Sophos real-time does not provide protection against all archive formats.

                        My testing showed that rar, tar, 7z files are not scanned. Ticket/Case opened and confirmed with support 8554747.

                        Would like to see more control over what file types/archives are scanned

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                        • new

                          Even though folder exclusions recommended by Microsoft for Exchange Server 2016 are added to the Automatic exclusion list added to the servers, the recommended Exchange Server 2016 processes are not being added by Sophos Central. Would suggest to add those and the file extensions also.

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                          • Machines not being able to contact Sophos Central

                            Can the App Dev Team write or come with a script to where when a client machine has been accidentally removed from Sophos Central and the client cannot contact central that the script can uninstall client and or remove tamper protection from the client machine which in turns allow the IT Admin to reinstall the client over again so the machine can communicate with Central again. The process you all have now is time consuming especially If the client machine is at a remote site and the IT Admin is not in front to the machine to perform its administrative…

                            2 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                            • Tamper Protection for Sophos Home

                              I just want Tamper Protection to be implemented into Sophos Home products. I suggest this because I have recently found out that all Sophos home modules can be terminated just by using Task Manager. This tells me that Sophos Home can be easily disabled by anyone, including unwanted attackers and malware.

                              6 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                3 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                              • Datenschutz deaktiviert

                                It seems to be quite unlucky to me that an endpoint with installed, but inactive "device encryption" shows the user the red Alarm sign ""Datenschutz deaktiviert" (german language Version).
                                This should only appear with an active "device encryption" policy. We have to tell the users to ignore this warning. I am afraid, this teaches them to ignore any warning by Sophos.

                                5 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                • Enable tamper protection control via policy

                                  Currently via Sophos Central you can either disable tamper protection for a whole organisation, or individually per machine. I would like tamper protection to be controlled via a policy so that I can specify a certain department or group of users that can have tamper control disabled.

                                  2 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Option to change how scheduled scan runs on battery

                                    Have an option in SEC/Cloud to delay or run a scheduled scan when system is not running on battery

                                    Example: Client sets up a scheduled scan to run at 7:30pm and users are running on battery. Have an option to delay this until a non battery power source is detected or delay a few hours/minutes

                                    21 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                    • EASY: Progress indicator on Sophos Endpoint download

                                      When I download Sophos Endpoint Protection for home usage, my computer begins downloading a 219 MB file without showing a progress bar. My connection is fast, but many users have slow connections, and they might think that the download has stopped or frozen.

                                      The fix is easy: have your Web site transmit a Content Length header at the start of the download process. Your web ops team could probably fix this problem in minutes.

                                      2 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Notification when the client is being updated

                                        Need to get a notification when the client is being updated (this is not the virus pattern). last week we had 2000 clients being updated at 300meg each which flooded our network if there was a notification then we could have prepared for this.

                                        4 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Simplify Sophos Antivirus Endpoint process

                                          Up to now the Endpoint protection of Sophos requires many steps to be uninstalled.
                                          For IT managers it's time consuming having to:
                                          - stop the service auto update
                                          - check the list
                                          - uninstall program by programm all Sophos products installed by the EndPoint in order

                                          As an alternative solution the Sophos Support answered us to implement a script that does all the steps by going to the Windows Registry, extract each program uninstall key and... ok, it's more complicated than the standard procedure.

                                          I think in 2016 there should be a way for programs to be useful, usable and…

                                          11 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            2 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 6 7
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.