Groups:

Top Level
>Sales
> UK
> Germany

Have the ability for the user to only access Sales and Germany only, excluding UK. This will give them the ability to control these sub-estates only.

Is this coming?

The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

I'd like to be able to scan a client remotely from the Enterprise Console and watch the scan in real time or at least get the progress of the scan with the result when it finishes.

searching for servers by IP will be great to manage if we manage hundreds servers.
Hosting companies are not friendly with the clients hostname.
It would be very useful to be able to search and identify servers.
So please add the option under Server Protection > Servers > The IP address searching.

Provide a REST (or other) API into SEC. Basic features such as creating groups, assigning policy, adding/deleting/moving machines would be immensely helpful. Nearly all major software applications now have some form of accessible API that allows common tasks to be automated. This idea was suggested back in early 2015, but sadly was denied.

I would be really nice to have AD sync to update when machines are deleted out of AD. As it stands right now, the AD administrator must inform the SEC administrator that machines have been deleted.

Sophos Product Information
Sophos Product: Sophos Enterprise Console
Version in Production: 5.4

Feature Request Summary
How will this new feature address your business requirements?: We need to have the ability to receive Web control events alerts where the endpoint protection has blocked a threat.
How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: Critical 5

In reports can we get in detailed report like below:
1. Out of Date Computers- Computer Name, Username, Location/group, IP Address, Last updated Date
2. Up to Date Computers- instead of count can you provide all system details like Computer Name, Username, Location/group, IP Address, Last updated Date
3. Authority to select required column in all kind of reports which is available in Console so we can customize the same as per our need

In order to add extra security to our company’s Sophos Endpoint (Anti Virus) Update proceedings I was going to change Primary update source to URL like described in the following link.

https://www.sophos.com/en-us/support/knowledgebase/38238.aspx

Nevertheless according to these two posts from Forum it seems not to be possible to call Update URL using HTTPS

https://community.sophos.com/products/endpoint-security-control/f/16/t/4332
https://community.sophos.com/products/endpoint-security-control/f/16/t/2630

Sending Credentials / Password without encryption is no option for us at all.

Thus it would be really helpful to have UpdateManagement working well with https.

hello,

we get so many notifications about scan errors with encrypted files. but it is useless for us. would be nice to disable this notifications, but not disable all notifications about scan errors.

Matthias Kurzer

for troubleshooting can be very useful uninstall or reinstall endpoint on multiple client remotely from management interface

Instead of trying to reinstate the interactive mode firewall to create rule sets, enable monitoring back at the console. At least we can scan through and create a rule without having to add it manually. Thank you

I would really like the option to enable exclusions based on Microsoft Recommendations. Once a year I manually go through the published recommended exclusions for Microsoft and other software (e.g. backup) and ensure I have those in my exclusions. It would be great (and save me a lot of time) if I had the option to check which exclusions I wanted.
This seems to already be partially implemented in Sophos Cloud Server.

Improve the Wildcard criteria for File Exclusions, inline with MS KB article KB822158.

So that *.* or say Edb*.log can be excluded rather than having to open up the entire folder or a blanket exclusion on all files with the extension.log etc

Thereby improving granularity and allowing exclusions to be very specific to named O/s files.

Examples being:

FileIDTable_*

Ntfrs*.*

Add an option to have policies cascade to sub groups in SEC

Add additional reporting options within the on-premise management console

Customer want a inheritance of policies down SEC folder structure then he replaces a policy in a top folder