Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Clear the local endpoint's quarantine.xml from the SEC server

    1. Please provide a way to clear the local Sophos quarantine through a managed Sophos update site for endpoints.
    1. Using this solution a customer can change the update policy within the managed console to the update site which would clear quarantine.
    2. Once quarantine is cleared the Sophos console would show it is cleared. (This is because clearing quarantine locally does report this status to the console.)
    3. Then the computers update path could be moved to another update location that does not clear the Sophos quarantine.
    4. Providing managed customers with a way to clear up the issues…

    32 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Remove self signed certificates and allow IT admins to install internal CA Cert

    We are a PCI shop and the self signed certificates that Sophos AntiVirus generates are a pain in the posterior. They show up as vulnerabilities using Nessus which requires us justifying the risk to our clients. This seems rather unnecessary to me as most PCI shops have their own CAs in-house. If Sophos would give us the capability of importing our own certificates, life would be much better!

    21 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  3. AD Sync For Deleted Machines

    I would be really nice to have AD sync to update when machines are deleted out of AD. As it stands right now, the AD administrator must inform the SEC administrator that machines have been deleted.

    20 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Sophos Endpoint IPv6 support

    I support a federal client and our implementation of Sophos Endpoint Security is only used for UNIX/Linux systems. There have been at least a couple of mandates by the government’s OMB for federal agencies to transition to IPv6 and internally the transition is coming quickly with some devices only enabled for IPv6.

    We currently have a host installed on the network, IPv6 only, that needs Sophos installed and communicating with the Sophos Endpoint server over IPv6.

    It is my understanding from Sophos support that this is not currently supported. What like to know what the plan is for endpoint IPv6…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Web Control Email Alerts

    Sophos Product Information
    Sophos Product: Sophos Enterprise Console
    Version in Production: 5.4

    Feature Request Summary
    How will this new feature address your business requirements?: We need to have the ability to receive Web control events alerts where the endpoint protection has blocked a threat.
    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: Critical 5

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Enterprise Console get data with snmp

    Be able to read status of server or clients with snmp from the Enterprise Console to my Check_mk Server

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  7. In reports can we get in detailed report (eg. Out of Date Computers- Computer Name, Username, Location/group, IP Address, Last updated Date)

    In reports can we get in detailed report like below:
    1. Out of Date Computers- Computer Name, Username, Location/group, IP Address, Last updated Date
    2. Up to Date Computers- instead of count can you provide all system details like Computer Name, Username, Location/group, IP Address, Last updated Date
    3. Authority to select required column in all kind of reports which is available in Console so we can customize the same as per our need

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. https AutoUpdate

    In order to add extra security to our company’s Sophos Endpoint (Anti Virus) Update proceedings I was going to change Primary update source to URL like described in the following link.

    https://www.sophos.com/en-us/support/knowledgebase/38238.aspx

    Nevertheless according to these two posts from Forum it seems not to be possible to call Update URL using HTTPS

    https://community.sophos.com/products/endpoint-security-control/f/16/t/4332
    https://community.sophos.com/products/endpoint-security-control/f/16/t/2630

    Sending Credentials / Password without encryption is no option for us at all.

    Thus it would be really helpful to have UpdateManagement working well with https.

    23 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. uninstall and reinstall option

    for troubleshooting can be very useful uninstall or reinstall endpoint on multiple client remotely from management interface

    55 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. enable/disable scan of encrypted files or enable disable

    hello,

    we get so many notifications about scan errors with encrypted files. but it is useless for us. would be nice to disable this notifications, but not disable all notifications about scan errors.

    Matthias Kurzer

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  11. active directory Group

    Active Directory synchronisation is very limited, particularly in large environments. Proper Active Directory integration should include the ability to filter policies to specific Active Directory groups and even Active Directory sites (for update servers). Take the following example, based on my environment, here is the OU structure:
    - Laptops
    ----- Finance
    ----- Agriculture
    ----- Education
    - Workstations
    ----- Finance
    ----- Agriculture
    ----- Education

    If we sync this with Sophos we lose the ability to give individual groups within each area different policies. So for example IT users in Agriculture need a different Device Control policy, so now we need an…

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos Firewall monitoring mode for windows 8 and 10

    Instead of trying to reinstate the interactive mode firewall to create rule sets, enable monitoring back at the console. At least we can scan through and create a rule without having to add it manually. Thank you

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Enterprise Console Focus and Dashboard Refesh

    Resolve Enterprise Console losing focus on window/frame after using Dashboard links. After launching the SEC and using any of the Dashboard links, attempting to use any frame thereafter loses focus when the Console refreshes (3 seconds). Adding groups, renaming, scrolling, find computer, etc. have to be clicked every time there after to regain control until the next refresh in 3 seconds. Focus is fine in any frame on launch until a link is used. This does not occur with the Dashboard closed.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Sophos Enterprise Management Console client should connect to the server over HTTPS instead of HTTP

    PCI DSS 3.1 requires that all administrative access must be encrypted. By connecting to port 80 with unencrypted HTTP the following requirement is broken:
    "2.3 Encrypt all non-console administrative access using strong cryptography. Use technologies such as SSH, VPN, or TLS for web-based management and other non-console administrative access."

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Microsoft Exclusion Templates (e.g. SQL, Exchange, AD,...) 3rd Party Backup

    I would really like the option to enable exclusions based on Microsoft Recommendations. Once a year I manually go through the published recommended exclusions for Microsoft and other software (e.g. backup) and ensure I have those in my exclusions. It would be great (and save me a lot of time) if I had the option to check which exclusions I wanted.
    This seems to already be partially implemented in Sophos Cloud Server.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Re-implementation of “Per process” exclusions for Anti-Virus scanning in Server 2012

    Sophos Product Information
    Sophos Product: Sophos Endpoint Protection (antivirus client)
    Version in Production: 10.3

    Feature Request Summary
    Re-implementation of “Per process” exclusions for Anti-Virus scanning.

    It appears that this hidden function of the endpoint client no longer operates in Windows 2012 (see the support case that gave rise to this request #5147863).

    It would in fact be useful to formalise and document the functionality, as well as provide easier access to it.

    How will this new feature address your business requirements?:

    We would use this feature to avoid impact on backup speed where on-Read scanning is enabled on systems.

    On-read…

    26 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    12 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Sophos for Mac

    Sophos for OS X recognizes a Virus and tries to delete it. But the Virus was in a Temporary directory so Sophos gives back the error that it cannot delete it. Put a File Check there to be sure that the File still extists if not delete the Alert otherwise try to delete it and give an Altert.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Improve Wildcard Criteria

    Improve the Wildcard criteria for File Exclusions, inline with MS KB article KB822158.

    So that *.* or say Edb*.log can be excluded rather than having to open up the entire folder or a blanket exclusion on all files with the extension.log etc

    Thereby improving granularity and allowing exclusions to be very specific to named O/s files.

    Examples being:

    FileIDTable_*

    Ntfrs*.*

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  19. SEC import/export policies

    Allow export/import of all policies in Sophos Enterprise Console

    28 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  2 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Createa an exclusion template for Microsoft recommended exclusions for AD

    Microsoft has a set of exclusions that it recommends for AD. As a starting point from which users could add/remove further exclusions, how about a template of exclusions to import into Sophos for Domain Controllers.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.