Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Application Control - Screen sketch (Windows Ink Workspace)

    Windows Update adds in Windows "Windows Ink Workspace" feature included by default in all Windows computers, Screen sketch allows you to capture screen, assuming a serious security hole.

    Add restriction for Screen sketch (Windows Ink Workspace) to
    Computer Policy / CONTROLLED APPLICATIONS / Screen capture tool

    Thanks!

    1 vote
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
    • Application Control - Screen sketch (Windows Ink Workspace)

      Windows Update adds in Windows "Windows Ink Workspace" feature included by default in all Windows computers, Screen sketch allows you to capture screen, assuming a serious security hole.

      Add restriction for Screen sketch (Windows Ink Workspace) to
      Computer Policy / CONTROLLED APPLICATIONS / Screen capture tool

      Thanks!

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
      • Citrix - allow a user policy override for a Citrix Server

        When logging on to a PC, the PC policy is in effect. When the user logs on the User policy will override the PC policy and take precedence. This is useful for blocking all unnecessary applications, website and perhipherals.

        When logging on to a Citrix server the Citrix server polic is in effect. There is no possibility at present for a User policy to take precendence. At the moment, if you want to allow an application, it is allowed for all user on the same Citrix server (same for websites, perhipherals etc).

        It would be useful to have a user…

        1 vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
        • Share the applications added each month to application control policy

          There has been cases when an already existing application was blocked suddenly because sophos adds to the list. It has caused significant disruptions in the company. It would make sense to share the applications added each month prior to pushing it out.

          1 vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
          • Schedule Disable tamper Protection.

            As you maybe know there are problems with IASO systemstate backups in combination with sophos antivirus.
            https://community.sophos.com/products/endpoint-security-control/f/sophos-endpoint-software/95786/freeze-thaw-vss-failures-when-sophos-av-is-utilized/374472

            The workaround is

            1. Disable Tamper Protection on the affected servers
            2. Open Services.msc on each server
            3. Stop and Disable the Sophos Health service
            4. Reboot server and test backups

            At Sophos managed central its possible to tamper protection manually for a device.

            Is it possible to schedule the "disable Tamper Protection" at a certain time in Sophos managed central?

            Then we can add a pre backup job to the IASO backup systemstate backup job to disable the sophos healt services and…

            4 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
            • Application Control

              Currently users must send a request to Sophos Labs to have a file blocked by Application Control. It would be good if users could create a custom block list to deploy across their environment - for example, block/alert on SHA256 hash, filename, regex, directory path, etc.

              Having the option to alert (not block) would be useful too, so use of applications that are required, but suspicious can be monitored.

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
              • Microsoft Remote Desktop store app

                Please allow us to enable/disable Microsoft Remote Desktop from the Microsoft App store. For some reason it's being blocked even though I have all the RDP options unchecked in Application control. I submitted a ticket for this and another application and they said i need to submit a suggestion.

                How is it a suggestion when it doesn't work as designed?

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                • Force policy update

                  A button to force policy update on Sophos Central endpoints would be nice.

                  3 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                  • Browser extention control

                    Allow or block browser extensions/Addons based on a whitelist.

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                    • Application version control

                      Additional options in Application Control, especially for browsers.

                      Being able to block:

                      Versions of Chrome < X (Chrome current version is 62)
                      Versions of Firefox < X (Firefox current version is 57)

                      Being able to block versions of Chrome < 59 and Firefox < 53 would be a great start in killing off legacy browsers with lots of vulnerabilities from being permitted to browse the Internet.

                      14 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                      • yandex

                        hi,

                        There are problems with YandEx. There are thirty application types from google. For Yandex, we need that much detail.

                        web side and application side are very inadequate.

                        I want a download / upload solution for yandex applications.

                        3 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                        • bloqueo de Connectify

                          Este aplicativo permite compartir Internet en los equipos

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                          • Block Adobe Acrobat versions which are EOL

                            Adobe Acrobat 8 is available to blacklist. Update the option to allow blocking EOL versions of Adobe Acrobat & Acrobat Pro. Today, version 11 or earlier is end of life.

                            2 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                            • teamviewer

                              Please add ability to block TeamViewer by version.

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                              • Block Grammarly

                                Grammarly can be installed without admin rights into a user's profile, but requires an admin to... fail to remove it. I ended up torching the folder containing it, but it's left a mess on that PC. Since Grammarly is effectively a keylogger that sends to the cloud, it doesn't meet our security policies.

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                • 1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                  • kaspersky

                                    Block Kaspersky AV product similar to AVG and AVAST under Application control.

                                    2 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                    • portable

                                      Hi, i miss the application Keepass Password Safe to block in the application-Policy section. Some user seems to capable to run this as portable Version, so that i'm out of control

                                      1 vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Turbo-Mailer

                                        The application Turbo-Mailer is a program used to mass-send emails. This has been used maliciously in the past and should be added to the list of applications capable of being blocked.

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Block Add ons in browser that will allow user to connect through VPN and by pass the firewall rules of Sophos UTM.

                                          Block Add ons in a browser that will allow user to connect through VPN and by pass the firewall rules. We can't allow employees who has a knowledge on this yet they are freely using the VPN connection to by pass the firewall rules even the company's rules and regulations.

                                          2 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.