Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Control over Sophos client engine updates deployment

    At this point timing of the new Sophos client engine version deployment and all endpoints subsequently requiring reboot is unpredictable.
    Need to be able to schedule new version deployment on particular date and time, to avoid tampering with windows updates deployment / other scheduled maintenance tasks in the environment.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Sophos Update Manager (SUM) Reset

    SUM failing to update even after resetting it or repairing it.

    The metadata in the database become corrupt, resulting in a constant cycle of incorrect package information.

    Error Version information for product “windows endpoint security and control” was not gathered by dispatcher “dispatcherPrograms-2018-02-15T14-28-01-1”, as the last synchronisation of that product failed

    Error decode operation failed with an unexpected error. Details: failed to read customer file content

    What helped was information from an internal KBA: 111822

    This was to reset the MetaData within the database. After this, the SUM then successfully updated.

    Can we look at creating a method of checking…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add a full scan progress view for SEC

    Add a full scan progress view for endpoints managed through SEC...seems obvious that an admin would want to know the status of a scan.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  4. Message Router service restart on error

    Under certain conditions the Sophos Message Router logs "The network identity (also known as the Interoperable Object Reference or IOR) of the local computer is invalid." and the agent no longer reports in to the Enterprise Console. Even though an error was detected the service does not restart or continue to retry. You can manually restart the Message Router service and it works correctly. Changing the service start mode to "Automatic (Delayed Start)" also works.
    Please modify the Message Router so when this error is detected the service will retry, or terminate the service so Windows can restart it.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Create Authentication for Sophos Enterprise Console

    We could see that Sophos Enterprise Console does not have any authentication feature.

    In our environment we are planning to upgrade to Sophos Enterprise Console to 5.5*, and through sophos support we came to know that the latest versions also does not support authentication feature.

    We request Sophos team to look into it. Since this is a requirement from our management.

    Regards,
    Abirami Devaraj

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Disable Notification

    Currently, on the SEC product, In the Messaging dialog box, in the Antivirus & HIPS policy, it is possible to disable the notification for the windows desktop concerning:
    - The Suspicious behavior detection,
    - Suspicious file detection,
    - Adware and PUA detection settings
    It missing the notification concerning the website detection, could you please add it in a future version ?
    Thanks.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Make it possible to allow Loopback connections in the Sophos Client Firewall

    We want to create a firewall rule for the Sophos Client Firewall to allow loopback connections (at least TCP and UDP) not only if the IP 127.0.0.1 is used (this is already possible today), but also if the “external” IP of the client is used (e.g. 192.168.0.1). On Windows 7 this worked out of the box, but with Windows 10 this is no longer possible according to Sophos support.

    One possible solution would be if you were able to use a dynamic variable for firewall rules for the clients IP. Then you could create a rule like

    Where the protocol…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Be able compare FW policies in SEC for possible overlap and unneeded policies.

    Customer what's to be able to compare FW policies in SEC to aid in duplication/overlap.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Endpoint Migration Utility request to update tool

    In the "EMU" migration utility (KB116737) please have the following additions:

    1. Have an option checkbox to force a refresh of all of the client's polices after migration. Basically, stop Agent service, remove AdapterStorage files, start Agent. This will guarantee that if, for whatever reason, endpoints do not get sent the new/fresh polices from the new SEC, that this option will force the client to ask the new SEC for a fresh set of polices.

    2. Please fix the creation of the mrinit.conf file so that it has the standard CR-LF so that, if opened in Notepad, it will not…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. ldap

    Allow additional filters on the AD/LDAP query used for sync. Our internal policy when retiring an endpoint is to disable an endpoint and only delete it after a period of time. As such, we have a number of retired endpoints showing as unmanaged.

    Enhancement request:
    Permit additional filters on the query to allow the exclusion of disabled systems.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  11. policy evaluation

    The Policy Evaluation Tool (PET) which is part of the console software can generate a report showing exceptions in policies that may pose a risk. We have some reports that are showing valid and desirable exceptions as "questionable". It would be great if we could 'flag' these as safe so that they are not marked as questionable in the future. This would allow us to continually run the PET report and 'catch' risky exceptions that may be added by whoever in the future.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add reports that match the view filters of the SEC dashboard.

    I'd like to create scheduled reports of the information in the following view filters of the Enterprise Console Dashboard: "Computers That Differ From Policy", "Out-Of-Date-Computers", and "Computers with Errors". Or ideally, any view filter. I'd also like to be able to email it to in .pdf format to my helpdesk and tech group. I work in a suburban school district and the more automated reports I can get, the better.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Process Exclusions throug Policy

    It is possible to configure process exclusions at the agent level, but cannot be configured by the Enterprise Console. When you add a manual exclusion at the agent level, you are getting a warning that your server differs from Policy. Moreover, when you modify your policy and you apply it, it deletes the exclusions that was done at the agent level.

    Can we expect to have Policy compliance between Enterprise Console and agent level in a next release?

    Thanks,

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Queue Installation/Remediation Commands

    Provide the ability to have requests/commands to clients queue. Currently the console appears to "fire and forget" when attempting to send remediation tasks/updates to clients. So a client that has registered an event/alert and is not online requires constant monitoring for when it does come back online.
    Set the capability in the console that tasks allocated to clients will queue and then be processed the next time the client comes back online

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Sophos removal .EXE

    Any one can create Sophos removal .exe which is removed Sophos completely from the system. eve though it's removed from system REG as well ...It's really very help full for all Sophos user...

    Please revert us on above request ...

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Policy Migration Tool

    The migration tool is great, but it would be great to incorporate policy migration as well. Though the policies don't directly link up, for the ones that central can accommodate eg. Scanning exclusions, web control, application control

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Disable AD Synchronization Computer Description

    Currently the following happens:

    1. SEC sync's with Active Directory and pulls the computer description from AD.
    2. Then later on the Sophos Agent service will send the description set on the endpoint and SEC will set that as the new computer description.
    3. AD Synchronization interval triggers and sets the description back to what is set in AD
    4. Again later on the Sophos Agent service will send the description set on the endpoint and SEC will set that as the new computer description.

    This cycle goes on and on in a continuous loop. Can we get an option…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Disguse or decrypt UserPassword from UpdateManager Account (iconn.cfg)

    The UserPassword from iconn.cfg which is not strong encoded can be very easy decrypted. The process to secure the password should be stronger. The user should be part of the local policy - deny log on locally - like the SophosSAU user.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Recursive

    Implement in the Enterprise Console a possibility to allocate a guideline recursive to all child-folders

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Port 587 - Sophos Enterprise Console

    Include support for SMTP Port 587 besides Port 25.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.