Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Create path / software exclusions by Endpoint software (MSP/FLEX)

    i could be fine if a endpoint is installed and the program opens after installing for selectable enhanced installoptions. - detected running / on automatic set Services, detected running exe in the Taskmanager and so too - the depending directories for setting exclusions.

    This settings should be able to set them by option to set a record set into the customers account under exclusions.

    Actually - correct me, if i went to be wrong. it is not possible to set this exclusions only for one machine. If exclusions set, it goes to all Machines in a customer environment.

    at this…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  2. Reboot Required Updates

    We have been seeing alot of reboot required on our systems/servers in the environment, with a message that computer is not protected. I understand that updates do require an update from time to time to update the software on the systems, but confused about why we are seeing these so frequently? Is there a way to set groups to have the software schedule a reboot at a certain time for a group of computers and then prompt (with popup), or reboot on logoff for the others by default action (with the exception of servers). This is just making me worried…

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  3. Fix the Running malware in quarantine or cleanup failure indicator in Sophos Central

    We're constantly having hosts that have a status of red because Sophos is falsely reporting that "Running malware in quarantine or cleanup failure" Can we fix this or have an automated process to delete the events.db?

    30 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  4. Set email alerts by group of computers

    Set email alerts by group of computers . So we can set who gets alerts for certain computers.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Control Retention Time/Size for logs stored on endpoints.

    It would be helpful to be able to specify the length of time or the maximum size of logs stored on endpoints, so that we can plan for storage requirements, rather than them growing indefinitely.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  6. Puremessage - Override Block List

    Allow the ability to override wildcarded entries in the block list to allow traffic from more granular addresses..i.e. - Block allow traffic from a country (@.XYZ) but allow traffic from specific domains within a country (*@ABCCOMPANY.XYZ)

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. MFA

    Currently, when enabling the setting to require MFA for all admins, it breaks the AD Sync tool. The only way around this is to manually add Admins to the list required to use MFA. This is a potential security issue as it is easy to forget to do this. I would like to see a feature added where MFA can be set to required for all admins, but the ability to add an exception for instances such as the account used for AD Sync. Thanks

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  8. Invincea

    Okay, so I have found much to my surprise that when you attempt to install the Sophos Endpoint on a Dell computer with Dell Protected Workspace (Invincea) the Sophos installer pops up a red notification that advises "Invincea is installed - This installer is not compatible with Invincea" This makes it rather hard to push out this installer via group policy to target endpoint computers. What is REALLY confusing is that since Dell has owned Invincea since Feb of 2017 is why doesn't the Sophos endpoint installer not include a process that automatically uninstalls a product that conflicts and with…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add anti-tamper status to report

    Could we have each system's anti-tamper status added to the Computer report? I believe there is a compromise solution looking at events for SEC customers but that is not an option for Central.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  10. User group assignment install parameter

    There is an existing install parameter "--devicegroup=<Central group>" to automatically add a new device to a specified group in Sophos Central. I would like to propose a "--usergroup=<Central group>" parameter to do the same for any new user added as part of the install, which can be used in tandem with the devicegroup parameter.

    This would be useful for managing client-specific, user-based policies (such as Web Control) without having to manually add new users to a policy or group or make client-specific changes to a global policy that would affect all clients.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  11. Threat Analysis Center - Detected Threat Cases

    If you have large amount of Threat same cases from a single user or device you can not delete more 25 item at a time. Currently I have 7000 from a single computer with the same message and Sophos has not provided tools to delete more than 25 at a time. It will take few days for me to delete all.

    Not good enough Sophos.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. block all users from being able to install any software on their company computers using Sophos Intercept X advanced

    It would be nice to be able to block all users from being able to install any software on their company computers using Sophos Intercept X advanced...just the same way we have server lockdown in Intercept X for servers, kindly do the same to Sophos endpoint.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Sophos Central- Asset list report with AV signature

    It would be really good if there is a report list of assets together with latest AV signature can be extracted from the Sophos Central

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  14. Peripheral Control Policy in Sophos Central

    When the Peripheral Control Policy is set to Control access by peripheral type and add exemptions, categories for devices that are set to Allowed should continue to log as events for those computers to know what is still being connected to them, just like it did when Monitor but do not block (all peripherals will be allowed) was defined. When the policy is set to Control, it only logs events for blocked devices which isn't helpful to audit what else might be getting connected to the computer that is being allowed and may want to be blocked after review.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. Update Sophos Version/Agent Manually to make up for lack of Control in Controlled Updates

    Currently in Sophos Central we can add servers to a Test Group and prevent all other servers from having their agent update.
    This is completely inadequate. Need to be able to create more Server Groups and be able to update to the new version by server group.

    Should be able to download a manual install for the new version and apply it to the servers while Controlled Updates is turned on.

    This would allow us to update critical servers at a time of our choosing.

    Right now, the option is Update All Servers - This is equivalent to pushing the…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  16. Web Control

    It would be nice to configure Web Control Policies based on the Computer Group or a Computer as Type instead of only Users, for example a Laptop that is not only in use in the company but also used at home for private use.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  17. Supress all notifications on RDS environments

    Users on RDS servers visiting websites marked as "Malicious" receive a server-wide pop-up from Sophos Endpoint protection.

    "Desktop Messaging for Threat Protection" has been turned off on the policy but users still receive the warning in the lower-right corner of their screen in the RDS environment.

    Because of privacy reasons and GDPR this is unwanted behavior, if one users visits a "Malicious" website all the users receive the warning including the visited link.

    This is marked as a "Known issue" at the following link:
    https://community.sophos.com/kb/en-us/127299

    The feature would be to be able to disable the notifications for the categories: Malicious…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Malicious Traffic Detection (MTD)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Make Malware Removal More Powerful

    Sophos is really good at finding malware, but not so good at cleaning it up. Half the time it requires, "Manual Cleanup." If it had better/more powerful removal capabilities, that would be fantastic.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Malware prevention  ·  Flag idea as inappropriate…  ·  Admin →
  19. Endpoint Protection - show last login/update

    I'd really like it, if under Computer Management -> Manage Computers, it show the last update/login date of the computers in the list.
    This way it would be easier to keep track of old systems that are no longer updating.
    I'm sure that this also would be useful in the full version, for administrators to keep track of systems that are no longer using/need licences.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Wording Change on Message Box

    A user where we work tried to download a regular pdf we had a Sophos Endopoint File transfer request blocked pop up window and it said " if you wish to transfer this file you need to allow it".
    It caused confusion because she was trying to download a file and not transfer one. Can the word 'transfer' be changed to 'download' for clarity?

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID Test Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.