Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Wireless

    Be able to restrict devices to a certain wireless security type, such as WPA2 only.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow user based policies in the cloud for thin client users

    Currently unable to set user based policies for thin client users. They are currently only able to support server policy.

    17 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  3. the reports should have the local timezone

    when running reports out of the Sophos cloud anti-virus, they should show the local timezone...

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  4. Ability to change scanning of network files on Mac OS X from the cloud

    On the client for Mac OS X you have the ability to turn off "files on network volumes". If you turn it off it "jumps" back on(May be a bug). It would be great if it was possible to control scanning of network volumes from the Cloud Console through a policy.

    I see it as a checkbox solution: "Do you want to scanning network volumes? Yes/No".

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  5. DMIS Dongle

    When the customer plugs in a PC-DMIS dongle, they would like our device control policy to detect this specific device and be able to add an exemption for it.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. UTM LiveConnect cloud integration

    I like the idea of the Sophos cloud, I manage a school district using the SEC with a UTM broker relationship to web filter endpoints when offnet for unified web filtering.

    Please add the ability to integrate cloud endpoints to this same type of filter synchronization and we will be sure to adopt the product.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  7. Implement automatic reporting in PM for Exchange

    Implement automatic reporting in PM for Exchange. In SEC there is already a possibility to send monthly reports. We also wish this for PM.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Allow easy export of all endpoints from SEC to Excel

    1. Easy export of All Computers in console to a spreadsheet
    a. (we routinely do this and it takes 30 minutes to select all and copy to clipboard and paste 38,000 objects to a spreadsheet. If you forget your computer is copying the data to the clipboard and copy something else then you have to start all over. I installed an app called Ditto on my machine for this very reason to have multiple clipboards)
    2. Include the connected status in the data copy – a yes/no column for “Currently Connected?”
    3. A way to automate a dump of the…

    4 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. When writing to a device that uses the MTP/PTP/WPD drivers, the data control event gets logged to the local PC, but does not get submitted t

    When writing to a device that uses the MTP/PTP/WPD drivers, the data control event gets logged to the local PC, but does not get submitted to the console. On later versions of Windows, the MTP driver seems to be used by default, so that even flash drives, which traditionally used the mass storage driver, are instead using MTP and data control events are only accessible from the local PC. Our only solution at this time is to block PCs with later versions of Windows from writing altogether, which will be unfeasible as these newer versions become more prevalent. When can…

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. On-access scan ability to cleanup adware/pua

    Request for the ability in on-access scanner to be able to remove/cleanup adware and pua's automatically and not have to do it manually or use the scheduled scanner

    9 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  11. Smooth scrolling of endpoints in SEC

    Please somehow allow buffering or something that allows one to smoothly scroll through a long list of endpoints in the SEC. With 30K + endpoints, we see that Page Up / Page Down helps some, but if you click the scroll bar it will pause and then scroll too far forward or backward. It's really annoying if you're looking for a certain IP range or name, for example.

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add ability to configure Message Relays to the SEC GUI

    Currently we have to find and edit mrinit.conf. It's not terrible, but a bit tedious to remember exactly where to do it and when to change MRParentAddress vs ParentRouterAddress, so it would be great if a sub-pane was added to the CID configuration window that lets you edit the values there at least. (Update Managers, Configure, Distribution tab, Update To list, click Configure. This window.)
    Bonus points if we can edit a particular endpoint in the Endpoints view and opt to make it a message relay, then the configure window above would list endpoints that have this designation.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  13. Re-protect computers automatically

    Although with AD sync SEC can install endpoint protection automatically to the computers, it tries only once to protect the machines. Sometimes if there was a netowork error SEC should try the installtion again, moreover this feature can be very useful if the security software was uninstalled from a machine. When there are a plenty of machines on the network it is difficullt to check if the automated installation was fine and/or re-protect the machines manually.
    SEC should try to install the protection several time in a week or something like this...

    9 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  14. tool to import sophos email applicance logs

    sophos email appliance rotates logs after 30 days but these logs are difficult to read importing to excel/libreoffice - please can sophos develop a tool import the logs into a readable format.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. Manage email alerts

    Would be nice if it's possible to simple change what is triggering mail alerts, how often, and perhaps include mail alerts to non-admins.

    In general a basic opportunity to control what generates a mail alert and to disable the alerts you don't want to see. Seems a rather basic function to have missing in a enterprise product really.

    22 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  16. More detail in endpoit product threat detections

    I would like to see more detail in the detection alerts. We have been seeing alerts come through the cloud management and local EP console, for activity detection like those below.

    'http://img.easycaredrive.com/assets/dealer_custom_assets/EC000066/custom_header.jpg'; blocked due to category 'Spam URLs' Jan 14, 2016 13:28

    Malware cleaned up: 'Mal/JSRedir-AE' at 'www.bay-valve.com'; Jan 14, 2016 10:01

    Malware detected: 'Mal/JSRedir-AE' at 'www.bay-valve.com'; Jan 14, 2016 10:01

    'http://concord-toyota.easycaredrive.com/response-processing/3-question-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'; blocked due to category 'Spam URLs' Jan 14, 2016 09:20

    Update succeeded

    What is missing is a copy of the source (web trigger) that led to the alert. I have…

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  17. merge all duplicate names into one device history

    As a feature request, it would make more sense if we had an option to merge all duplicate names into one device history. We use physical asset tags, and our
    machines are named from the tag numbers. We reimage machines and reinstall Sophos, so now we’re getting duplicates which is driving up our device count and hurting our effort to stay within our license limit.

    8 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
    Planned  ·  Jonathan Giffard responded

    There are changes planned to the end point agent such that it is able to detect if it is a duplicate. If so, the endpoint generates a new id which leads to it being treated as unique.

  18. Allow safeguard disk encryptiong to be installed on master image for enterprise imaging processes

    There is a real need to be able to install Safe Guard on a master image for enterprise mass deployment of computers. There needs to be a way to reset a Unique ID after image process to allow for centralized monitoring as well.

    2 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  19. Ping Request for computers

    Ping request feature for those environments whose AD hasn't been cleaned of old computer accounts. This way you'll know which PCs wont be able to connect because they're offline and can fix the issue before applying the AV or Patch, saving time in troubleshooting.

    3 votes
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  20. Hide features and/or reports due to work council

    We have a customer with the web control feature enabled.
    On some sites the users are warned.

    On the report about the web control events there is the two columns "warned" and "proceeded". Due to the work council they are not allowed to see how often there was a warning. They are only allowed to see how often the users chose the proceed-action.

    Please implement a kind of 4-eyes mechanism so that specific data of reports can only be seen when two people provide their login data at a time.

    1 vote
    Sign in
    (thinking…)
    Sign in with: sso facebook google
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.