Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Re-protect computers automatically

    Although with AD sync SEC can install endpoint protection automatically to the computers, it tries only once to protect the machines. Sometimes if there was a netowork error SEC should try the installtion again, moreover this feature can be very useful if the security software was uninstalled from a machine. When there are a plenty of machines on the network it is difficullt to check if the automated installation was fine and/or re-protect the machines manually.
    SEC should try to install the protection several time in a week or something like this...

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  2. tool to import sophos email applicance logs

    sophos email appliance rotates logs after 30 days but these logs are difficult to read importing to excel/libreoffice - please can sophos develop a tool import the logs into a readable format.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  3. Manage email alerts

    Would be nice if it's possible to simple change what is triggering mail alerts, how often, and perhaps include mail alerts to non-admins.

    In general a basic opportunity to control what generates a mail alert and to disable the alerts you don't want to see. Seems a rather basic function to have missing in a enterprise product really.

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  4. More detail in endpoit product threat detections

    I would like to see more detail in the detection alerts. We have been seeing alerts come through the cloud management and local EP console, for activity detection like those below.

    'http://img.easycaredrive.com/assets/dealer_custom_assets/EC000066/custom_header.jpg'; blocked due to category 'Spam URLs' Jan 14, 2016 13:28

    Malware cleaned up: 'Mal/JSRedir-AE' at 'www.bay-valve.com'; Jan 14, 2016 10:01

    Malware detected: 'Mal/JSRedir-AE' at 'www.bay-valve.com'; Jan 14, 2016 10:01

    'http://concord-toyota.easycaredrive.com/response-processing/3-question-survey/eyJoaXN0X2lkIjogIjc4MDA1MyIsICJtYXJrZXRpbmdfZ3JvdXBfaWQiOiAiMTI3Nzc4MSIsICJjdXN0b21lcl9tb2JpbGVfcGhvbmUiOiAiIiwgImN1c3RvbWVyX2hvbWVfcGhvbmUiOiAiOTI1Njk4MjMyOCIsICJ2ZWhpY2xlX2xhc3Rfc2FsZSI6ICIiLCAidXVpZF9zdHIiOiAiNmY0ZmZlNzgtOTkwNC00OWZkLWI3ODAtN2Y2MzFiZDJiNTdiIiwgInNlcnZpY2VfYWR2aXNvcl9uYW1lIjogIkdBUklCQVksR0FCRSIsICJjaGFubmVsIjogImVtIiwgInZlaGljbGVfbWFrZSI6ICJUb3lvdGEiLCAiY2xvc2VkX2RhdGUiOiAiMjAxNi0wMS0xMiIsICJyb19udW1iZXIiOiAiMTEwMjk5OCIsICJzZXFfbm8iOiAiMzg5MiIsICJjdXN0b21lcl9kcGJjIjogIjEyIiwgImN1c3RvbWVyX25hbWUiOiAiVGVycmkgVmFuZGV2ZWlyZSIsICJjdXN0b21lcl9taWRkbGVfbmFtZSI6ICIiLCAidmVoaWNsZV9lc3RpbWF0ZV9taWxlYWdlIjogIjEwMTQyNSIsICJzYWxlc21hbl9udW1iZXIiOiAiIiwgInZlaGljbGVfdmluIjogIkpUREtOM0RVMUEwMTA5NTAwIiwgImN1c3RvbWVyX3N0YXRlIjogIkNBIiwgImN1c3RvbWVyX2FkZHIyIjogIlNwYyAxMiIsICJjdXN0b21lcl9hZGRyMSI6ICIzMDAgRSBIIFN0IiwgImRlYWxlcl9pZCI6ICJFQzAwMDA2NiIsICJjdXN0b21lcl9sYXN0X25hbWUiOiAiVmFuZGV2ZWlyZSIsICJjdXN0b21lcl9maXJzdF9uYW1lIjogIlRlc'; blocked due to category 'Spam URLs' Jan 14, 2016 09:20

    Update succeeded

    What is missing is a copy of the source (web trigger) that led to the alert. I have…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  5. merge all duplicate names into one device history

    As a feature request, it would make more sense if we had an option to merge all duplicate names into one device history. We use physical asset tags, and our
    machines are named from the tag numbers. We reimage machines and reinstall Sophos, so now we’re getting duplicates which is driving up our device count and hurting our effort to stay within our license limit.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
    Planned  ·  Jonathan Giffard responded

    There are changes planned to the end point agent such that it is able to detect if it is a duplicate. If so, the endpoint generates a new id which leads to it being treated as unique.

  6. Allow safeguard disk encryptiong to be installed on master image for enterprise imaging processes

    There is a real need to be able to install Safe Guard on a master image for enterprise mass deployment of computers. There needs to be a way to reset a Unique ID after image process to allow for centralized monitoring as well.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ping Request for computers

    Ping request feature for those environments whose AD hasn't been cleaned of old computer accounts. This way you'll know which PCs wont be able to connect because they're offline and can fix the issue before applying the AV or Patch, saving time in troubleshooting.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  8. Hide features and/or reports due to work council

    We have a customer with the web control feature enabled.
    On some sites the users are warned.

    On the report about the web control events there is the two columns "warned" and "proceeded". Due to the work council they are not allowed to see how often there was a warning. They are only allowed to see how often the users chose the proceed-action.

    Please implement a kind of 4-eyes mechanism so that specific data of reports can only be seen when two people provide their login data at a time.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  9. Data control - Exclude URL:FavIcon

    Client is using data control to track everything and for type - image the URL:FAVICON shows up in the log.

    Client would to be able to exclude this from the logging but currently with the colon ":" this can't be done.

    Has tried *.url and *.favicon with no success

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  10. manually set the global size limit to reject messages larger than

    for sophos email appliance
    allow the admin to either select a predefined global size limit to reject messages greater than xxMB size or manually set a limit, the predefined limits between 2-50MB doesn't suit all business requirements.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  11. Use Fully Qualified Names in Enterprise Management Console

    Instead of using the NetBIOS Name for computers in the SEC, use the Fully Qualified Domain Name (FQDN). This would allow administrators to use the Protect Computers Wizard more easily, ensure proper identification of machines in the console, and allow for additional ways to filter computers in the list.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Setting Application Exemptions per device

    I'd like to request a way to allow an application to run on a single machine without moving the machine to its own folder, creating a new policy, etc…
    This feature would be ideal when we have one-off applications that we don’t want to allow all people to use.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. Cloud application control what isn't in compliance

    I get alerts that say "Policy non-compliance: Application Control".
    This information isn't useful, I need to know which application isn't in complacence, so that I can decide if I need to unblock it or uninstall the software.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  14. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. Launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups

    There is a known issue where launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups.
    It would be great if this was resolved and nested groups work. This is a compliance breakdown.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow Anti-Virus and HIPS configuration at the dashboard (as it is available on SEC) for managed Cloud endpoint (desktop computers)

    Allow the configuration of the Anti-Virus and HIPS settings to be applied for the endpoints installed on desktop computers, such as:
    - HIPS configuration (enable/disable buffer overflow, suspicious behavior, malicious traffic)
    - Enable/Disable on-access scanning on read, write, rename

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  17. In sophos cloud add group name column in event report.

    We have deployed cloud endpoint protection for more than 300+ machines. In the event report its just shows the following columns (Severity, Event, User, Device, & When) So we are unable to know the user belongs to which group.?

    Please ADD gropu name column in event report.

    Thanks.. :)

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  18. Web Control for Servers

    Sophos Cloud use to have web control on servers before the product split. With the new server product you are unable to configure web control policies. These policies are extremely useful for terminal services and other remote access tools.

    Also a good way of stopping admins looking at 'unsavory websites' from a non-filtered source.

    It can't take much to add back, after all, it's already available for on-premises servers.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Bulk Device Removal

    There should be a way to bulk remove devices from Sophos Cloud. One way could be uploading a CSV file with device names to be removed.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.