Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Third party Software

    We suggest you to add the capability to do Vulnerability and Patch management for 3rd party software too, as some other competition AV software do.

    OS & 3rd party software installation
    Automates the creation, storage & cloning of system images – to save you time whenever your business needs to roll out new systems or update software on existing systems.

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Patch Assessment  ·  Flag idea as inappropriate…  ·  Admin →
    • 3rd Party Application installation and Patch Management. Location awareness with device and web policy

      This is a mandatory requirement that has come up for us consider 4000 nodes of our endpoints switching from Kaspersky. The present end point provides us a facility create automatic update task for all Microsoft and 3rd party updates which are critical or approved by administrator so that we can fix vulnerabilities. Also we can deploy 3rd party software using same to client machines.
      Also it also has a feature to enable multiple policies like "In Office Policy", "Out of Office Policy", etc so that we can have multiple web and device control policies which are critical to our business.

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
      • lockdown

        would be nice to be able to see more lockdown events than 24 hours and also to be able to search/filter by date range. Also, why cant we get email alerts when lockdowns happen?

        3 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
        • Report the active websites in Exploit Prevention

          When getting an ROP, HeapSpray, StackExch exploit detection, it would be nice to know what site(s) the user was on at the exact time of the detection. This would allow us to look at whether or not the site caused the detection. We can even access the site from our detonation chamber to test.

          3 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
          • Allow USB Device by ID AND per User

            Central Endpoint: Is it possible to add a "layout" to except USB Devices by ID combined with a Person? So the Basic Policy could block any USB Device and Exceptions are made by Person instead of a Policy which allows the Device for many Computers or Users. So the exceptions is one by one (Device ID & User).

            4 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
            • 1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Flag idea as inappropriate…  ·  Admin →
              • Sophos Central Send Reports to Cloud (Sharepoint\Dropbox\Box\AWS...)

                Currently, Event Reports only do 6 months of reports and gets sent via email.
                I would love to generate .pfd's of all my reports but our attachment limit via email is 10MB

                Could you not allow or link a URL to a Sharepoint\Dropbox\Box\AWS cloud storage share?
                Sign in verify the user login then collect reports there.

                2 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
                • Biometric Compatibility Expansion

                  Allow users to login through Safe Guard utilizing Windows Hello and/or a wider variety of biometric devices (such as standard Dell/HP fingerprint readers, eternal reader brands, etc).

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                  • Assign server group membership using a configuration setting on the endpoint.

                    We use Citrix PVS (Provisioning Services) to dynamically create XenApp servers from one gold image.
                    I followed Article 120560. All good.
                    Where I have a problem is the Group Assignment in Sophos Central.
                    My base Gold Image servers are assigned to a group called "Master".
                    Now I boot one production server using the new Image.
                    It appears in the Unassigned list. I have to manually assign it to the "Production" group and Policies.

                    I would like to be able to either specify the Group in a configuration file or registry key that survives the procedure I follow in Article 120560. …

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
                    • User-created policy can be disabled by settings, but remain enforced?

                      In Sophos central, for some policy categories it is possible to set a user-created policy to enforced, but "disable" it from its settings.

                      For example, suppose that in the Web Control section there is the base policy at the bottom and the user-created one above it. If the user-created policy is opened for editing, the very first setting is:
                      Web Control: Enforce/Ignore the settings in this section of the policy

                      This setting is different from the Enforce/Ignore policy on the far right tab. Hence, it may be the case that there is an "ignored" policy, which retains "enforced" status, thus…

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                      • Tamper Protection, log "login" attempts

                        We would like to know when someone attempts to disable tamper protection by trying the guess the password. Loging such attempts would enable us to be alerted

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • On-Demand Scan from the Enterprise Console

                          I'd like to be able to scan a client remotely from the Enterprise Console and watch the scan in real time or at least get the progress of the scan with the result when it finishes.

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                          • Would like to have an alert when we get the event "Failed to install hmpa64: a reboot is required before the installation can succeed"

                            Would like to have an alert when we get the event "Failed to install hmpa64: a reboot is required before the installation can succeed" or any other reason that result as rebooting the server or PC. When you have many servers, we can not check all the events on each server individually

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                            • Allow CPU % limiting for Sophos Processes

                              Give the ability in Sophos Central to limit CPU usage for Sophos overall. This would apply to scheduled scanning as well as any process that is using high CPU at login. I want these things still happen but be less noticeable to users.

                              18 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                              • file type

                                Sophos real-time does not provide protection against all archive formats.

                                My testing showed that rar, tar, 7z files are not scanned. Ticket/Case opened and confirmed with support 8554747.

                                Would like to see more control over what file types/archives are scanned

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                • Easy way to move endpoint devices to a new client

                                  Dealing with a company split. The only way to move devices to the new client site is uninstall/reinstall. Most other products I've dealt with have an easy way to move endpoints to a new site. The current process is to disable tamper protection, wait, script an uninstall, then a script a reinstall. It's way more work than it should be. In the console, there should be an option "Move to a different client". With that, there should also be an easy way to add/remove components to match the new client site.

                                  10 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                  • website management

                                    When a website tagged in Global Settings > Website Management is blocked due to a web control policy, the block page should inform the user which tag(s) caused the page to be blocked.

                                    4 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
                                    • search for sever by IP address in Sophos Console

                                      searching for servers by IP will be great to manage if we manage hundreds servers.
                                      Hosting companies are not friendly with the clients hostname.
                                      It would be very useful to be able to search and identify servers.
                                      So please add the option under Server Protection > Servers > The IP address searching.

                                      1 vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                      • clear multiple alerts

                                        From Cloud Console, Status Tab, Alerts section, it would be great to have an option to select multiple alerts and clear them/acknowledge them all at once. If I'm addressing an endpoint with multiple actions, I have to go through one by one and Mark as Resolved. At the very least they could be grouped so that I don't have to confirm multiple instances of the same persistent file being cleaned up because another infected computer on the network is dropping a file on it and Sophos is deleting it. If this happens after hours I could have 20 of the…

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Tool kit for incident response

                                          Whenever I'm forced to do a manual cleanup, I invariably use the same tools, which are effective but scattered and sometimes difficult to use. It would be great if some of these items were packaged together and could be run from a "cleanup dashboard". A Swiss Army knife for repairing infected endpoints. Often, I'm responding to a new customer that doesn't have Sophos yet and this is my time to shine and SELL.
                                          -Sysinternals Autoruns
                                          -Refined SOI tool (archaic and easy to accidentally shut down) that can pinpoint the faulty node without me poring over 25MB of text
                                          -Sophos batch…

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.