Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Sending out authenticated Emails from Endpoint

    Endpoints send email alerts only through email server which accept emails without authentication. Such an "open relay" is a "no go". Sophos claims to be an "Gartner Endpoint Leader" in todays newsletter...

    But what about the simple security things?

    Im waiting for that function now for more then 10 years!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  2. EDR Threat Search to Cover All Sub-Estates on an Enterprise Dashboard

    For now, EDR's feature Threat Search only covers a specific sub-estate (For and Enterprise Dashboard) where a device of reference for a detection is a member of. Manually, the admin has to copy the artefact (SHA or filename) and threat search it to other sub-estates. It will be helpful to cover all sub-estates in the future for threat searches for easier administration and investigation.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Incident investigation  ·  Flag idea as inappropriate…  ·  Admin →
  3. fire your entire (non-)support staff! Destroy any manuals oe operating procedures they have made

    fire your entire (non-)support staff! Destroy any manuals or operating procedures they have made

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Incident response  ·  Flag idea as inappropriate…  ·  Admin →
  4. Linux MTD Exclusions

    Allow Linux machines to have MTD exclusions put in place to help alleviate maxing out resources.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Malicious Traffic Detection (MTD)  ·  Flag idea as inappropriate…  ·  Admin →
  5. Disable Tamper Protection through Command Line

    Hi,

    Somethimes, managing 1000+ or even 5000+ machine its difficult, even more if we don't have built-in features in the console to remediate/uninstall corrupt/broken installations.

    But, the main problem is not that. The problem is that we CANNOT disable Tamper Protection remotely to reinstall/remove Sophos AV, in the following cases:

    1) Console was erased/failed and there's no cert/db/registry backup (all Endpoint with Tamper enabled)
    2) Broken installations dont apply Tamper Policies (to disable it)
    3) Migrated console (don't have the old one).

    All this would be solved by having the chance to disable Tamper through Command Line. Example

    Case A:…

    19 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  6. Visibility Into Details in Many Screens Within Sophos Central Dashboard

    There have been many situations when using the Sophos Central Dashboard when I see some high-level information but no way to drill down into the details. For example when using the Endpoint Protection, Logs & Reports, and then the Policy Violators report... I see a user listed but that's it... there is no way for me to know what computer, what policy, how to update the policy if necessary, etc. This is just one example of many such situations. It severely impacts the length of time it takes me to explore issues and address them. I've seen demos of Palo…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  7. PureMessage Quarantine Web access: enable over HTTPS

    Please enable HTTPS web access to the PureMessage Quarantine store - this would enable us to allow access to it externally, very useful for people working remotely and using OWA and Exchange Mobile.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  8. Phishing websites can be identified and blocked automatically

    Phishing websites can be identified and blocked automatically, basing on the characteristic and behavior of phishing website to compare with popular normal websites, then catalog and block them. whether you can enable the artificial intelligence for it.
    Because we always get the phishing link, Sophos can't help us at all.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  9. RBAC Granular Control For Groups

    Groups:

    Top Level
    >Sales
    > UK
    > Germany

    Have the ability for the user to only access Sales and Germany only, excluding UK. This will give them the ability to control these sub-estates only.

    Is this coming?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Install and Unisntall

    Install and Unisntall option in SEC using the IP address or the name and local administrator of endpoint.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  11. Enterprise console Origin Infection

    I suggest to add the field 'Origin of Infection' on logs of one virus detection.
    This field is very importante in malware such as Conficker or WannaCry.
    Andother antivirus companies provide it.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos DLP Feature not working when Microsoft Secureboot is enabled

    Sophos Data Control feature in the endpoint solution is incompatible with Secure Boot. Secure Boot is the foundation for Microsoft's Windows security stack since Windows 8. Data Control under Secure Boot blocks all USB file transfers.
    Sophos Tech team advised to disable secureboot option. But this is not practical in large organizations with branches in different locations. Many companies require DLP solutions for compliance and will likely switch products if Sophos can't find a way to work with Secure Boot.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Data Leakage Prevention (DLP)  ·  Flag idea as inappropriate…  ·  Admin →
  13. File Integrity Monitoring on Linux Server Protection

    Enterprises need File Integrity Monitoring on their Linux system files. This is a requirement for all systems requiring Continuous Monitoring (NIKST 800-137) which are all defense contractors, Government contractors, government agencies, and soon, all HIPAA covered entities.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
  14. Assign server group membership using a configuration setting on the endpoint.

    We use Citrix PVS (Provisioning Services) to dynamically create XenApp servers from one gold image.
    I followed Article 120560. All good.
    Where I have a problem is the Group Assignment in Sophos Central.
    My base Gold Image servers are assigned to a group called "Master".
    Now I boot one production server using the new Image.
    It appears in the Unassigned list. I have to manually assign it to the "Production" group and Policies.

    I would like to be able to either specify the Group in a configuration file or registry key that survives the procedure I follow in Article 120560. …

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
  15. Uninstall and Repair Endpoints via Sophos Central (was SEC)

    The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

    156 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  11 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  16. Indication on the Sophos Icon by the time if a computer requires a reboot to complete update

    When Sophos requires a restart of the computer to complete an update it would be really good if the sophos icon by the time changed to a yellow exclamation mark or something so the end user would know to notifiy system administrator that Sophos needed attention. Or they could just restart the computer.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  17. Display status of client from taskbar icon

    When a PC has the Endpoint Protection Client deployed via Sophos Cloud, if the client has issue or is out of date, there is no visual prompt on the Sophos shield icon in the notification area. You have to open the client and then click about, to see when a client last updated.

    When we used to use Sophos Enterprise Console, the Sophos icon in the notification area would have a red cross overlaying the icon, notifying the user of a problem

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  18. Delay Endpoint "Updating Failed" Toast Notifications

    Current, if a endpoint managed device has not been used for a period of time, the next user who powers this one and logs in will get a notification stating that the "Updating has failed". At this point the software has / is in the process of downloading (or shortly will do) updates to the device as normal.

    This present increased admin and support overheads when users log tickets.

    Suggestion to have the ability to either disable this notification or have logic which enables this to be delayed in displaying to the end user until either a set time after…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  19. Hide 'Virus protection Security and Maintenance' popup notification in VDI desktops

    I like to request the option to suppress/hide the 'Virus protection Security and Maintenance' popup notification in VDI desktops. Reason is that the red cross seems to be confusing to end users (for some users indicates there's a problem even though it's just there to notify that Sophos antivirus is active). Thanks!

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  20. Application Control - Event Viewer

    Application Control - Event Viewer- provide to select particular component to set allow or deny policy.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.