Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Support scheduled scans with Sophos Home Premium

    Hopefully I'm just missing something but I can't find a way to schedule daily scan with Sophos Home Premium other than creating a Windows Task. This seems like a very basic endpoint security feature and was previously supported by the free version of Sophos.

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
    • Console option to view if endpoint needs restart

      It would be convenient for admins and end users if we could see in the "Devices" page within the Sophos Central Console a column that shows if the endpoint needs to be restarted (generally for applying updates.) Furthermore have the option to be able to sort by this column.

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
      • Sophos Central - Provide the ability to modify options Task Scheduler

        Currently, the option to "Run task as soon as possible after a scheduled start is missed" option is disabled.

        Please enable this option so a computer that was off when the scheduled scan executed will be scanned the next time it becomes available.

        1 vote
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
        • Export Alerts from the Sophos Central UI

          Please provide the ability to export from the Alerts page in the the Sophos Central UI.

          1 vote
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
          • Allow Tagged Internal sites to bypass default Web Control Policy.

            We need to allow our users to download .exe files from internal sites. We have added the sites on our safelist, but continue to receive the Sophos Warning. Users can download the file if they click continue on the Warning.

            2 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
            • gmail

              It is possible to block Web Mail using Web Control, which is great. However we are corporate users of Gmail. With most competing products it is possible to use the inclusion of a specific header to enable gmail to apply controls as to which domains can be logged into - see https://support.google.com/a/answer/1668854?hl=en. As is it is not possible to allow access to corporate gmail but disable access to personal gmail. This is a significant feature missing.

              1 vote
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
              • How do i perform an exclusion

                i have more than 50 desktops installed into Endpoint protection and manage without enterpise console . How can i perform exclusion (psexec.exe) for all the 50 desktops without enterprise console .

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                • More configuration options for email notifications in SEC

                  In SEC you can only configure the smtp server and the email address used for sending mails. According to the KB there are some registry keys for configuring smtp authentication.

                  But unfortunately there is no way to enable SSL/TLS for sending mails.

                  Please add this feature, so that the smtp auth credentials won't be transmitted in cleartext over the network.

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                  • api

                    Extend API with Device status

                    For housekeeping purposes we compare asset status of different systems (Eg. AD, Deployment systems, monitoring, etc...). Reporting services would need access to the computers and servers list. The API is a perfect tool for this but it lacks requirend fields....

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                    • Disable Tamper Protection through Command Line

                      Hi,

                      Somethimes, managing 1000+ or even 5000+ machine its difficult, even more if we don't have built-in features in the console to remediate/uninstall corrupt/broken installations.

                      But, the main problem is not that. The problem is that we CANNOT disable Tamper Protection remotely to reinstall/remove Sophos AV, in the following cases:

                      1) Console was erased/failed and there's no cert/db/registry backup (all Endpoint with Tamper enabled)
                      2) Broken installations dont apply Tamper Policies (to disable it)
                      3) Migrated console (don't have the old one).

                      All this would be solved by having the chance to disable Tamper through Command Line. Example

                      Case A:…

                      12 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        3 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                      • Block user access remotely

                        An option to remotely wipe or lock out the Computer will be a great feature to have it as a part of Sophos Endpoint Encryption

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                        • website management

                          When a website tagged in Global Settings > Website Management is blocked due to a web control policy, the block page should inform the user which tag(s) caused the page to be blocked.

                          2 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
                          • whitelist

                            I've certain sites "old style" that need to download a windows executable in the browser cache, basically without user intervention. To be clearer, I mean in a "hidden" way. I would like to let user to download THIS executable from THIS site without showing any warning from antivirus. The problem is that user can't see the sophos warning that "organization discourage executable download" because the download is hidden, and so the app fail. It's a feature that is in some way similar to that already existing in sophos that let execution of executable if located in a specifical folder. See…

                            2 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                            • dynamic groups based on OS

                              since ad sync for sophos central isn't getting much love & support for syncing computers (and groups containing computers) - will it ever?
                              i suggest that we have dynamic groups in central that auto-populate based on OS
                              e.g. we could then have these groups: win7, win8, win10, osx1010
                              which auto-populate with computers that run windows 7, windows 8, windows 10, OSX 10.10 respectively.

                              this would then allow us to easily sort computers & assign policy, based on os

                              2 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                              • Data control add mtp/ptp device

                                When customer to setting data control policy , only can setting removable device.
                                But mobile can't set in the policy.
                                So we want to add mtp/ptp device to control.

                                4 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
                                • The method of managing SAU credential for Mac

                                  SAV for Mac AutoUpdate username/password are missing even creating disk imaged followed by KBA33050. Autoupdate credentials are stored in the Keychain. This keychain will automatically get dumped and reset if the serial number of the Mac changes. Many educational institution use Netboot to deploy SAV for Mac, they want SAV to keep the AutoUpdate credential information after deploying image to avoid actions in SEC, meaning put them into group and apply policy.

                                  24 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Intercept X - JAR files

                                    Intercept X does not appear to process JAR files - malware like Java Adwind seems to get past Intercept X. Are there plans to have Intercept X / Sophos ML to process JAR files? This woud provide much needed heuristic detection of this common family/type of malware.

                                    2 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Next Generation Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Intercept X - Detect Malware Downloaders (Macro's, PDFs, etc]

                                      Intercept X is great for detecting new executable malware, however it does not seem great at detecting malware downloaders, e.g. Office macro or PDF downloaders.
                                      Can Intercept X be enhanced so it looks for Office documents that spawn powershell/cmd/BITSAdmin or any other application that can be used to download executable content? This will provide an additional layer of defence in depth that an adversary has to bypass in order to infect a system.

                                      2 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Next Generation Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Definition updating

                                        Currently there is no alert / status change for an endpoint who's definition files are out of date, meaning, let's say you have a fully protected client, but, sophos update (not engine as that alerts if it fails) but rather JUST the definitions fail to update.

                                        we would like the ability to be able to either configure a threshold for alerting, or be able to simply enable/disabled alerting for definitions not updated.

                                        we have many endpoints that will fail to update for days, and the result is a system that while there are no alerts, is potentially not protected.

                                        my…

                                        2 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                                        • More switches for setup.exe - show install status but disable buttons

                                          The setup exe allows --quiet to be passed that does a full hands free install. The problem is the status dialog is hidden, so the end user sees no progress bar.

                                          If an additional switch was added (normally this is --passive in msiexec installs) the user sees that something is happening as the install runs, but it stops them cancelling the install.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.