Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Allow the Read Only option for MTP/PTP devices

    Allow the Read Only option for MTP/PTP devices.
    This feature is usable in case the users attempt to access files storage in Smartphones or Tablets.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Azure Intergration

    It would be nice that when you deploy the Sophos cloud endpoint protection on a Azure domain joined device the device get's automatically mapped to the user in the Sophos Central portal.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  3. Create a remove it or uninstall app

    Create a remove it or uninstall app for sophos so that users who are not in the sophosadminstrators group can uninstall.

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. Log exempted USB devices

    With the Enterprise Console version of the product, when a device control policy is enforcing blocks and allowing exemptions, the exempted devices do not show up in the device control logs.

    Please add the option to log exempted devices.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Suppress Wireless Bridge Access Blocked Notification

    On OSX, on a device controlled client, going from wireless to wired connection creates a message indicating that the wireless bridge has been blocked. This can be annoying for an end user that goes between wireless and wired connections. We still want the bridge to be blocked, but it would be great if we could suppress the warning.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Disable Sophos automatically resetting windows security settings (e.g. UAC)

    Disable Sophos automatically resetting windows security settings (e.g. UAC)

    This is causing an issue whereby when Sophos identifies a problem, it resets windows security settings and turns UAC back on. The environment requires UAC be turned off.

    You can currently turn this off via per-pc registry key, see:
    https://community.sophos.com/products/endpoint-security-control/f/sophos-endpoint-software/90238/window-security-options-being-reset-during-remediation

    This would be ideally managable from the enterprise console

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  7. Pop up that suggest the election of scan or not scan a USB Device

    If Sophos can detect and block the USB devices, I think that Sophos can add a Window message to help the users to Scan the USB keys when this is connected to PC. With this manner if the user have selected the option once, for example, when connected the first time to the PC the second or next times he can cancel the process.

    The Sophos message is "Simplicity" and the idea is provide a "Simple" option to users to scan your USB's or other medias when it's are connected to the Pc's.

    This was suggested by LINCK in community …

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  8. [DEVICE CONTROL] Exempted device usage logs (Who used the device? On what machine? When? What device has been used

    [DEVICE CONTROL] Exempted device usage logs (Who used the device? On what machine? When? What device has been used - Device ID and Device type? Etc.)

    [DATA CONTROL] Device IDs should be included on the data control logs (Specific for Removable Storages)

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  9. Device Control - USB Devices

    Is it possible to be able to restrict access to USB's by a unique ID - such as serial number?? Currently you can restrict by model but that doesn't stop an employee bringing in their own USB stick if it is the same make and model we use??

    Basically we want to be able to issue USB sticks out to staff and only allow those precise devices to connect. Not any device that happens to be the same model.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  10. device controll

    Selection "All" for "Modell-ID" (Problems by bluetooth mouse MX Anywhere 2/changing Modell-ID daly)
    Select "ALL - Modell-I"D for XY.. -Device-ID.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  11. device control

    We have already set the default policy for
    device control and these policies are applied on one of the particular group, but
    when user from this group wants to access printer or dongle such devices are
    getting blocked as they are not storage devices. Every time we need to exempt those
    devices . Our concern is that we want these devices(Printer, Scanner, Dongle)
    allow automatically for the user without need of any exemption. and this feature is not available on Sophos antivirus.

    Kindly provide solution for it asap.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. HL-DT-ST DVDRAM GU10N identified removable device, it should be identified Optical device

    HL-DT-ST DVDRAM GU10N identified removable device, it should be identified Optical device

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Add Imation IronKey D250 Personal 4GB secure removable storage device to supported Device Control list

    We recently decided to move forward with using the Device Control feature. We have dozens of these devices distributed through the facility. I see the Enterprise and Basic version has already been cleared. Please add this one the Personal.

    Thanks in advance.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow CD-writers to be exempted when using read only policy

    We want to have a read-only optical device policy to allow all CD-ROMs to be used but only allow CD-writers by exemption. When using the read-only mode, any attempted write events are not being reported on the client or to SEC/Central, so there are no device control events to select and exempt the CD-writer you want to authorise. The only workaround is to temporarily set the policy to the more restrictive 'blocked', at which point all previously blocked events are suddenly reported to SEC/Central, allowing it to be exempted, then the policy can be set back to read only. Clearly…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. "Global" Exemptions (or better exempation by "Model")

    I have many "Integrated Cameras" that have been blocked after blocked MTP/PTP. I can exempt the Integrated Cameras by Model, but it only applies for 1 policy, which means I need to add them every policy. It also appears only appears to apply when the laptop model is the same as well, so I have to add "Integrated Cameras" for each different type of devices it has found on.

    We need to be able to exempt devices globally to that it applies to all matching peripherals of that type and on all policy.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  16. Prevent wallpaper change from web dashboard

    Give maintainer an option to prevent wallpaper changes even when user uses Windows 10 home where there isn't policy settings for that and regedit hack won't work ether.

    I know this isn't very commonly needed witth Sophos home version, but there are at least some short time periods when this is needed even at Home version. I really hope you can find a way to implement this and will include it already at beta (will definitely try beta immediatelly when this feature rolls out).

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. device control

    Device control removable storage to allow authorised applications full control/write access, eg. word, excel

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Change the default selected option when viewing a Device Control policy

    When attempting to add an exemption via a Device Control policy, it defaults to the 'Floppy drive' option but does not showing that this option has been selected. When you then click the 'Add exemption...' button it sets the 'Device type:' filter to 'Storage/Floppy Drive', and greys the filter out so that it can't be changed.
    This is not very intuitive, and causes customers to believe that the Event Viewer is simply not finding any Device Control events. If possible it would be better for it to, by default, set the filter to 'All', which is currently how it works…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. Instant Unauthorized Device Alerts

    I would like to be instantly alerted when a user attempts to use an unauthorized device on the network such as a flash drive or mobile phone. Having to wait until the next day to see the attempt on a report is not providing us with a fast enough response time to eliminate a possible threat.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  20. Drill down at usage summary or open report on graphic click

    When opening central Dashboard i like to click in the graphic or any other number like "not protected" to view Clients or pc's are affected. It is not possible to filter the list at People or Computers to see "not protected".

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.