Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Application Directory in Client Firewall Log Viewer

    When browsing the Sophos Client Firewall Log Viewer there is a column for the "Application" that is being blocked. It would be VERY HELPFUL to have..


    1. A column with the application location

    2. Be able to right click on the application name, that is being blocked, and click "Open File Location"

    This would save a tremendous amount of time in searching for the file location when you need to add that file to the trusted applications in the Firewall Configuration.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  2. Sophos Migration Tool for Mac devices

    Migration Tool for Mac devices:

    Currently about to start migrating on-premise Sophos Endpoint Protection server/users to Sophos Central. Problem - migration tool works for Windows only...but not for Mac devices.
    We have a large number of Mac devices and the use of the migration tool to assist in mass deployment for Mac devices would have been "invaluable" for this task.
    Please can the existing Migration tool be extended to also select Mac devices and migrate.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  3. Progressbar in New Endpoint GUI

    Lately we noticed that the new gui does not use a progress bar when a scan has been started. Is it possible to let the new gui display a progress bar?
    It is unclear for us and end customers if something is happening …

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  4. Services restart time

    The alert "Some Sophos services not running" happens a lot because of a service failure, particularly the Device Encryption Service. The system attempts to restart those services, but the restart attempt often times out because it is set to restart too soon. The tech support rep I just spoke to suggested changing the restart time from 1 minute to 5. This should be the default, not something we set manually. Often the services restart fine when performed manually.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  5. sophos clean upload

    Please disable automatic uploading of suspicious files from Sophos Clean by default. It is enabled by default and it can only be disabled per PC on the Sophos Clean software console. At least the Sophos Central console should have control over this to disable in bulk. This is a huge HIPAA violation concern.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  6. You don't block youtube

    That you please, don't block youtube.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  7. Improve compatibility checks for Central Windows installer

    The Sophos Central endpoint installer performs a number of compatibility checks when it is run, but there two conditions I regularly encounter that cause the installation to fail:


    • If there is another user logged on to the system

    • If the user running the installer is not a member of the SophosAdministrators security group, then it will not be able to uninstall an existing SAV installation.

    If the compatibility checks looked for these conditions it would make the installation process easier!

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  8. Local signatures

    It would be nice to be able to add local signatures (with MD5, SHA1, etc), in order to quickly react to 0-day threats, while waiting your Labs would provide ufficial signatures.
    Happens quite often that I notice via VirusTotal a threat isn't recognized by Sophos, while other competitors already recognize it hours before Sophos.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Deletion of Sophos Endpoint on Client computers

    Getting endpoint components to function as expected involves removing the current installation of Sophos. Many times I have to resort to the Microsoft “Fix it” tool at https://support.microsoft.com/en-us/help/17588/fix-problems-that-block-programs-from-being-installed-or-removed to clean out the existing install, then deleting the “Sophos” folders in Program data and Program Files (x86). All this takes a lot of time.

    Support can be saved by having application (or script) that would obliterate all traces of the Sophos product on a client device much like one of your competitors.

    The benefits would be a great time saving and a more accurate ‘removal” of the product.

    A tool that…

    13 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  10. The ability to add/remove individual endpoint components.

    With the Sophos on premise solution I had the ability to add or remove an individual component of the endpoint package. This was very useful in trouble-shooting a failed install. I currently have endpoint agents with partial installs and I am unable to trouble-shoot other the removing the complete endpoint suite and trying to re-install the full client once again. Even after several attempts some components remain uninstalled. Multiple re-install attempts fail to fix the issue.

    7 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  11. Option to change how scheduled scan runs on battery

    Have an option in SEC/Cloud to delay or run a scheduled scan when system is not running on battery

    Example: Client sets up a scheduled scan to run at 7:30pm and users are running on battery. Have an option to delay this until a non battery power source is detected or delay a few hours/minutes

    21 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  12. SAV for Mac

    Why would a global security software/hardware provider distribute/sell a product marketed as compatible/available for use on Mac OS X endpoints but fail to properly codesign the installer, include a valid Apple Developer Certificate, or bundle the OS X installer.app in a way that doesn't causes Apple's Gatekeeper to generate warnings that "the developer of this app (the OS X Web Gateway installer) cannot be identified"? Therefore requiring the user (us) to A) force override our system's security setting of only allowing installation/execution of apps from the Apple App Store and IDENTIFIED Developers, and then B) hope to **** that what…

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →

    The warning is a bit misleading as we are a trusted developer and the app is signed properly. There is an alternative way we can package the app to prevent the gatekeeper warning, we are investigating this at present. The software should, of course, only be downloaded from Sophos Central.

  13. EASY: Progress indicator on Sophos Endpoint download

    When I download Sophos Endpoint Protection for home usage, my computer begins downloading a 219 MB file without showing a progress bar. My connection is fast, but many users have slow connections, and they might think that the download has stopped or frozen.

    The fix is easy: have your Web site transmit a Content Length header at the start of the download process. Your web ops team could probably fix this problem in minutes.

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  14. Client Activity

    Request to be able to monitor client activity through the Sophos Enterprise Console.
    An example is Sophos Endpoint was blocking certain ports that Bloomberg needed to connect using but this was only discovered via client logs and was not visible through the Enterprise Console

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add update rate limiting to Mac OSX client the same way as currently implemented by the Windows clients

    Add update rate limiting to Mac OSX client the same way as currently implemented by the Windows clients

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  16. 2 Factor authentication to clear Tamper Protection

    If a client delete a computer from the Cloud Central product without uninstalling the PC software first, you are unable to remove Sophos from the PC. You need to follow KB124377.
    How about some form of 2 factor authentication to allow us to use a different random key to do this action for our clients?

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  17. Being able to download either .MSI or .MST installation files for Group Policy Deployments

    Being able to download installation files as .MSI or .MST instead of only .EXE This for a faster GPO deployment, and not having to use scripts and .bat files.

    21 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  18. Notification when the client is being updated

    Need to get a notification when the client is being updated (this is not the virus pattern). last week we had 2000 clients being updated at 300meg each which flooded our network if there was a notification then we could have prepared for this.

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  19. Visible display of "on insert" virus scan

    Sophos tech-support advise that the Central Endpoint product does perform a virus scan when removable media is inserted. HOWEVER, there is NO visual display that the scan is taking place. We suggest that a dialogue box opens and visually displays the progress of the on-insert virus scan.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  20. Don't show excluded volumes in scan items

    Sophos Endpoint Security for Mac scheduled scan logs list excluded volumes under the "Scan items" section. This is confusing, as it both indicates the scanner included and excluded the volume(s). Removing excluded volumes from the scan items list would provide more clarity regarding Sophos' scan history.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.