Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add option for e-mail message when Real Time Scanning is enabled (again)

    Sophos sends an e-mail when Real Time Scanning is disabled, but it does not notify when it is enabled again. This causes extra work for administrators, since they have to check machines if RTS is running, while the system could already have notified them that this is the case.

    Please implement an option to let the system send an e-mail when RTS is re-enabled.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  2. malicious traffic detection

    My understanding from the FAQs is that malicious traffic detection just checks HTTP traffic for connections to known bad infrastructure. So that means a domain/IP must be known to be bad for Sophos MTD to detect it.
    If it's not already being done, I'd like to request the HTTP request be analysed to find suspicious indicators, for example a connection to URI's like /fre.php or /gate.php could be indicative of evil, but if the domain is not in your list then it would be missed.

    Also, does malicious traffic detection decrypt and analyse HTTPS traffic? Is DNS traffic monitored for…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Malicious Traffic Detection (MTD)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Ability to change DNS configurations of SVE appliances

    It will be good to be able to change DNS configurations - IP of DNS server and DNS suffix - of SVE appliances after deployments. I say this because right now I need to make these changes for an AD domain consolidation project where we are migrating from one domain to the other. The only resolution seems to deploy a new appliance. This is time consuming.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
  4. we blocked Github in endpoint but users are able to clone from command prompt or terminal. Please do the needful

    we blocked Github in endpoint but users are able to clone from command prompt or terminal. Please do the needful

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  5. Ability to move machines between companies from Sophos central

    Add the ability to search between centrally managed companies for machines. We have 120 companies under management in Sophos Central, and I cannot tell you how many times the variables for an installation have been wrong and we have ended up with computers in the wrong company, which we cannot uninstall due to tamper protection, and we can't disable tamper protection because we don't know what company it went into.
    Even to be able to search and see where the pc went, so we could then disable tamper protection would be nice, but ideally I would like to see the…

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  6. Show whether client initiates on-demand scan

    Currently, you can initiate an endpoint scan from Sophos Central, but there is no way to tell from Central whether the scan was initiated until it completes - which could be several hours. The endpoint agent should communicate back to central when it initiates a scan, and Central should log an event either when a scan starts, or if the agent fails to respond after a reasonable timeout.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  7. Allow submitting sample from isolated device

    It would be handy if there was a way to submit a potentially malicious file from within the actual Sophos program; especially from an isolated machine. We had that situation come up recently and it was a real pain getting a sample off an isolated machine and transferred to another machine so it could be uploaded and submitted to Sophos. It seems like a no-brainer to just have that functionality built into the client.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support / Auto Exclusions for Exchange 2019

    What about Automatic Exclusion / full support for Exchange 2019 ?
    -it's (GA) been out for over a year..

    ETA ?

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  9. Sending Alert to users by central account admin

    Would be helpful to all the users of Central Admins, if they can send a alert to the users for whom any action to be done or if any policy violation has been done. This can enabled realtime monitoring and alerting of users.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  10. Device Control - Can define which USB Devices

    Central Endpoint: Can define which USB ID as full ID name because currently show same model and Vendor, can't define which USB when client detected

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  11. Hi Team we need to block of files sharing from Microsoft teams from sophos using Sophos policy

    we need to block of files sharing from Microsoft teams from sophos using Sophos policies? How to do that?

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  12. Be able to choose Email recipient in Scheduled reports

    Need to be able to choose or enter specific email recipients on scheduled reports...
    As it is now, only the Super admin who created the report receives the report. We need to be able to set up scheduled reports to be sent to people that are not super admin such as CIO, CEO, CFO, President, Head's of organization, etc....

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. add sign safe websites on web browser

    add sign safe websites on web browser

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  14. add sign safe websites on web browser

    add sign safe websites on web browser

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  15. virtual environment

    Add Intercept X or EDR feature to SVE

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
  16. To start the service, need to uninstall the Sophos but we don’t want to remove the encryption. Also, is there any solution to start real tim

    To start the service, we need to uninstall the Sophos but we don’t want to remove the device encryption. Also, is there any solution to start real-time as well as to start services. or update missing services. and to is there any to remove alert of "device is not protected."

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  17. temper

    Hi

    Is it possible to create the same Temper protection password for all of the users?
    The Help Desk tech doesnt have any access to the sophos portal.
    BR
    Shay Hanya

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  18. Crea

    Hi,

    Is there a possibility to add the ability to export the details of a specific policy into CSV, Excel and PDF? This would be helpful for incorporating the details into internal reports and internal discussion especially for a policy that has so much detail such as Application Control.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  19. Email trigger on USB detect

    For Endpoint is it possible that we set Peripheral Control in monitor mode and trigger that event via email.?

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  20. reactivating disabled setting on windows Client like Mac Client

    On Windows Client:
    If I have disabled tamper protection on a device, I can deactivate deep learning, real-time scanning etc. on the client using the Settings tab.
    I cannot reactivate it after i disable one Setting. They are just reactivate automatically after 4 hours.

    On Mac clients i can dasable and activate settings every time.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.