Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. a

    this is testing

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  APT/zero day detection  ·  Flag idea as inappropriate…  ·  Admin →
  2. the system tray icon also flags Sophos with an alert icon for better visibility to the user to also pass along to IT there is an issue .

    Modify the system tray icon so it flags Sophos with an alert icon when the system has issues that can be seen by users as a flag to notify IT there is a problem with the Sophos installation on that system

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. wildcard exclusions for exploit mitigation

    The idea is to use wildcards or folder base exclusion to prevent subprocesses from Hitman monitoring. For example if "make" starts many of gcc tasks or any other part of the toolchain. It would be nice to exclude the hole toolchain.

    6 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  4. Global Exclusions listed in SNTPService.log and Policy.xml

    Hello,

    When troubleshooting one of our endpoints I checked SNTPService.log and found out, that all global exclusions configured in Sophos Central appear in this log file.

    Log location:
    C:\ProgramData\Sophos\Sophos Network Threat Protection\Logs\sntpservice.log

    Additionally to the log file, these exclusions are also listed in the following config XML file:
    C:\ProgramData\Sophos\Sophos Network Threat Protection\Config\policy.xml

    To read these log and config files, no admin permissions are needed!
    So, if a client got compromised, an attacker just has to check these files to find out which locations on the file system are not monitored by endpoint security and might shelter e.g. malware without triggering…

    5 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  5. About Endpoint/Server's Central Server status

    There is a information about Sophos Central dashboard page status.
    https://centralstatus.sophos.com/

    It is better to show Sophos Server/Endpoint's product server's status page like Central Dashboard does.
    Is it possible to add or create a page like this?

    So that customer can identify if their endpoint/server page has problem or not.

    4 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  6. ARM Processor Support

    With the advent of the Surface Pro X, there is becoming a push for more 2-in-1 devices to work on ARM technology (as is found in most cell phones and tablets) to run full Windows OS's. However, there is no support for Endpoint Protection (Cloud or On-Prem) for these types of devices. I would like to see an Endpoint Protection package (Anti-virus, firewall, application control, etc.) that will support ARM processors.

    299 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  54 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  7. Include Serial numbers in our reports

    Add the Serial Number field to the device report and exported list. Usually the serial number is the only common denominator when running an audit.

    Right now my audit process is quite time consuming because I can't pull a device report with serial number.

    The Computer Report is quite useless without the serial numbers.

    It's kind of ridiculous that I can't create a custom report and pull the fields I require.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  8. Implement passive forced Client-restart

    We noticed that Sophos Endpoint Protection lacks the function of automatic monitoring of the restart status of clients, combined with a configurable automatic forced restart request on the user's client. The only way as a company to trigger this through Sophos Endpoint is actually via Live Response (Beta), but not automatically and by active monitoring beforehand.

    The problem we are observing is that serious security gaps arise in companies because employees do not regularly restart clients and thus the rollout of security updates is delayed (e.g. Windows updates). By implementing a monitoring of the restart status of clients, this circumstance…

    7 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Bulk Inactive computer removal

    We really need the ability to remove computers in bulk. Every time we recompose virtual machines it creates a new computer object and leaves behind a duplicate computer name.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  10. How can I see which version is installed in Sophos Central

    How can I see which version is installed in Sophos Central

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Searchable List When adding exemptions

    When adding Peripheral Exemptions based on Detected peripherals, there should be a searchable option for either the last user or the specific computer that it was detected.
    It becomes unmanageable to trace a specific detected peripheral over time.

    3 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  12. Adding Column for Employee id in the event report

    I would suggest a new column or rule in the event report by adding employee id.

    This can avoid duplication instead of searching by name or Hostname

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Next Generation Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  13. Delegate access to quarantine

    It would be great if a user who access to a shared mailbox like info@... could access to the quarantine of this mailbox from his own sophos login.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  14. Tamper Protection Report

    It would be very beneficial to be able to run a report on all devices that have tamper protection on/off.

    2 votes

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  15. DLP Database File Type - Add MS SQL backup file (bak) to the category

    Add MS SQL database backup file with the following extension (bak) to the database file type category. Currently, this bak extension is not blocked.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Sophos for ESXI 7

    Will ESXI 7.0 be supported in the near future and if not what would you recommend we do with Sophos for a virtual environment running VMware ESXI 7.0? I submitted a ticket and spoke to an engineer who suggested I post my question here.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
  17. Enhanced Peripheral control

    Can you provide a solution to be able to block a USB device once Sophos detects a virus on it? The idea would be; a USB with a malware on it being detected once inserted into one machine so it’s blocked and then once an attempt to insert the USB into another machine is detected, it instantly gets blocked due to Sophos already knowing that it’s got malware on it and will only be allowed on any machine once Sophos has cleared it of all malware.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  18. Sophos central _ Device page_ Endpoint Installed Date

    In Sophos central _ Device page. we require the serial number of the Endpoint and the endpoint installed Date

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. For peripheral exemptions, can you input a section that allows you to name the peripheral so that we can apply this device to multiple polic

    For peripheral exemptions, can you input a section that allows you to name the peripheral so that we can apply this device to multiple policies if we have a lot of usb or want to control the peripheral among many machines/policies without needing to know which random serial number it is.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  20. Endpoint Web Control Report

    Add the date and time in the "Web control" reports. It is too light. I am sure that other IT need a report includes the time mostly to know if it is during working hours.

    1 vote

    We're glad you're here

    Please sign in to leave feedback

    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 68 69
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.