Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. uefi partition scanner

    scan EFI boot partition for malware modules *.efi

    2 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      1 comment  ·  Flag idea as inappropriate…  ·  Admin →
    • malwarebytes

      Malwarebytes service and SOPHOS endpoint control on my pc worked together for almost a year. On or after the second Tuesday of the month, they no longer work concurrently. I either have to A) stop malwarebytes service and reboot, or B) turn-off SOPHOS Real Time internet scanning for four (4) hours, for them to work together on my PC.

      If Malwarebytes service and SOPHOS work together for the last three weeks, then all my browsers freeze.

      I am a Super Admin for the Iowa Attorney General's Office. Please restore the simultaneous functioning of Malwarebytes service and SOPHOS real time internet…

      1 vote
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        1 comment  ·  Malware prevention  ·  Flag idea as inappropriate…  ·  Admin →
      • Sophos Enterprise Console forward syslog to a Syslog Server

        A software for Sophos Enterprise Control to forward or send syslog directly to a Syslog Server e.g. RSYSLOG

        2 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
        • Allow CPU % limiting for Sophos Processes

          Give the ability in Sophos Central to limit CPU usage for Sophos overall. This would apply to scheduled scanning as well as any process that is using high CPU at login. I want these things still happen but be less noticeable to users.

          18 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
          • Device Encryption - Encrypt targeted data drives

            It would be good if data drives can be selected specifically for encryption. Currently it is not possible to exclude certain partition (for example HP_RECOVERY) from encryption. The option "Encrypt startup only" is sometimes insufficient.

            1 vote
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
            • Give Dave Malarkey Action Figures more Action

              Give the Dave Malarkey v2.0 action figures "pigeon throwing grip" akin to the old school action figure's "kung fu grip".

              2 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
              • application control

                we need to add 2 Application control which are mentioned below which we want to block in our network

                sqldeveloper.exe
                sqldeveloperW.exe
                SqlDbx.exe

                1 vote
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
                • Block Mobile Hotspot on Win 10

                  Sophos Can block Wireless, But cannot block Mobile Hotspot running on WIN 10. This is a great feature to have.

                  Thanks!

                  1 vote
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
                  • more verbose output when client installation fails

                    When a client installation fails, there are many log files created and if searched extensively, one can determine which component failed and the cause of the failure. It would be nice if there was more verbose output explaining what failed, why it failed, suggested resolutions, etc. It could be taken further to offer to "fix" the problem itself and continue with the installation.

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                    • Monitoring mode for Exploit Prevention

                      There should be a monitoring mode for exploit prevention ( detection is on but blocking is off )
                      so we can initally test what can the impact be and what kind of applications will be blocked by exploit prevention.

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Next Generation Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                      • Add Time Stamp to Suggested Ideas

                        As I look thru the list of ideas there is no time stamp as to when the idea was added or when some comments.

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          1 comment  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                        • Schedule Disable tamper Protection.

                          As you maybe know there are problems with IASO systemstate backups in combination with sophos antivirus.
                          https://community.sophos.com/products/endpoint-security-control/f/sophos-endpoint-software/95786/freeze-thaw-vss-failures-when-sophos-av-is-utilized/374472

                          The workaround is

                          1. Disable Tamper Protection on the affected servers
                          2. Open Services.msc on each server
                          3. Stop and Disable the Sophos Health service
                          4. Reboot server and test backups

                          At Sophos managed central its possible to tamper protection manually for a device.

                          Is it possible to schedule the "disable Tamper Protection" at a certain time in Sophos managed central?

                          Then we can add a pre backup job to the IASO backup systemstate backup job to disable the sophos healt services and…

                          4 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                          • Enable tamper protection control via policy

                            Currently via Sophos Central you can either disable tamper protection for a whole organisation, or individually per machine. I would like tamper protection to be controlled via a policy so that I can specify a certain department or group of users that can have tamper control disabled.

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                            • System Administrator

                              There need to be the ability to set a password policy for when users set a password during drive encryption. Encryption doesn't matter much if the password is "a".

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                              • Disable Sophos automatically resetting windows security settings (e.g. UAC)

                                Disable Sophos automatically resetting windows security settings (e.g. UAC)

                                This is causing an issue whereby when Sophos identifies a problem, it resets windows security settings and turns UAC back on. The environment requires UAC be turned off.

                                You can currently turn this off via per-pc registry key, see:
                                https://community.sophos.com/products/endpoint-security-control/f/sophos-endpoint-software/90238/window-security-options-being-reset-during-remediation

                                This would be ideally managable from the enterprise console

                                3 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
                                • Add Update Location to View Updating Status

                                  The current configuration for "View Updating Status" does tell where the endpoint is updating from.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Add Full Product Version to Status Window

                                    On the Sophos Endpoint Security and Control windows add the full product version to the product version in the status window.

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Customize/Brand block and warining message in Sophos Central

                                      I would like to be able to customize and/or brand the block and warning messages which are displayed as a result of the Web Policies in Sophos Central

                                      5 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Sophos for Virtual Environments - SVM command line installation parameters

                                        When installing the SVM, it would be beneficial to support command line arguments to automate the installation. Especially in large environments.

                                        1 vote
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Virtualisation  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Application Control

                                          Currently users must send a request to Sophos Labs to have a file blocked by Application Control. It would be good if users could create a custom block list to deploy across their environment - for example, block/alert on SHA256 hash, filename, regex, directory path, etc.

                                          Having the option to alert (not block) would be useful too, so use of applications that are required, but suspicious can be monitored.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.