Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Linux endpoint pass AD domain to SEC

    Allow linux endpoint to pass or detect the AD domain so that it doesn't have the issue described below.

    This will allow the use of AD sync and linux machines in an enviroment where the agent can be re-installed or the OS re-imaged.

    https://community.sophos.com/products/endpoint-security-control/f/3/p/9843/30725
    https://community.sophos.com/products/endpoint-security-control/f/16/t/9845

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  2. Sophos Services preventing to stop in administrator User

    Sophos AV can prevent stopping on their services as you log on as Administrator account to prevent disabling the features of sophos.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Separate Policy for Alerting

    When working in large environments with several sub-estates it would very useful having a separate policy for the alerting via E-Mail or SNMP

    Typically components of the AV+HIPS policy (e.g. Exclusions) can be reused in the sub-estates but in scenarios where have to alert different groups of administrators it would improve the usability when we could provide a separate alerting policies.

    So we would have a much smaller count of AV+HIPS policies and only one alerting policy per sub-estate.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  4. ARP Spoofing detection in Sophos Anti virus manage by SEC

    On be half of our client we will request this features to have on your Sophos AV Manage by SEC Server to prevent in ARP spoofing/poisoning.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  5. For the Cloud portal for Partners it would be great to be able to make global exceptions for all of our clients. Thinks like Labtech and Ka

    For the Cloud portal for Partners it would be great to be able to make global exceptions for all of our clients. Thinks like Labtech and Kaseya drop a lot of files that Sophos detects as PUA's (produkey/nircmd/psexec) that have to be re-mediated client by client event though they are all in the same directory. I'm thinking that in the area where you have tabs for account detail and alerting now there could be a global exceptions tab to push to the clients or a selected group of clients.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  6. The migration (server to server) guide could be more verbose about user accounts.

    For example explaining which users are required when migrating from older servers. How the EMLibUser no longer exists and thus is not needed. What a SophosSAU0 account is, or a link to the kb explaining it. (https://www.sophos.com/en-us/support/knowledgebase/58627.aspx)

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Alert email

    Client wants that as an administrator, they are receiving the Alert email for Out -of-Date Computers Or with other Alerts setting email but this email doesn't contain the list of related endpoints and their description, which Admin wants to quickly look from the email rather than go and jump to console.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Be able to delete compressed files that have an infected file in them.

    Be able to delete compressed files that have infected files in them. Either as a default setting or as a option in the enterprise console. Many of the virus/adware that can not be cleaned are inside compressed files. In almost all cases deleting the compressed file is the preferred solution..

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  9. Data Control

    Sophos Product Information

    Sophos Product: Endpoint

    Version in Production: 10.3

    Feature Request Summary

    Verification on content rules.

    Case reference - http://sophtrac/Default.aspx?caseid=4653988

    How will this new feature address your business requirements?:

    Better able to track user actions in incident and investigation scenarios

    How would you rate the importance of this feature?; 2

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  10. Allow install of SAV on a different drive and allow option to install components on other drives

    Allow the option to select where SAV can be installed on an endpoint and allow the option to select where the components for SAV can be installed to.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
  11. Registry key exclusion

    Can we add an option to exclude a registry key from on access scanning?
    Customer is using a third party software and its vendor recommended this.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  12. Removal tool for Eset File Security 4.5

    From customer:

    We are competing with other vendor very hard to move them to the Sophos cloud.

    One of the biggest competitors in Israel is ESET with is very common in Israel because it low price and a hard marketing work.

    When we win against them the first thing is to be able to remove the competitor.

    In the last few month we won in 2 SMB companies that both of the have around 350 workstations and about 30 servers.

    The first we moved from a customer from TrendMicro that we could not remove with the cloud software and we…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
  13. Monitoring capability to see Endpoint scheduled scans are running or have been run (with timestamp) via SEC.

    Feature on SEC to view and monitor scanning on endpoints. Viewing on Computer Details when the last scan occurred (or started).

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  14. Tamper protection for Firewall

    Large UK customer has a requirement for Anti Tamper client side Firewall

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  15. Real time notification for updates

    Feature Request Summary

    How will this new feature address your business requirements?: Stop dealing with outdated error messages as they spook the customer

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 2

    Notes:

    This seems like less of a ‘feature’ to be requested and more of a bug to be fixed, but I have filled in the form regardless. I think an issue that occurred
    in the past and has been deemed resolved or superseded in this case by a succesful update then there is no need for a popup alert regarding this…

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  16. Endpoint only supports 2 Templates only

    Client deploying the web control policy through Enterprise console but web control policy defined in UTM.
    Currently, The EP only supports 2 templates: block and warn.
    However the UTM supports 3 actions: block, warn & admin override.

    Currently the warn page template for Endpoint is used for admin override, so the block & warn actions need to share the same template.
    Client wants endpoint must support at least 3 actions as well .

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  17. If the situation of cidsync.upd being empty re-occurs, Software would automatically correct the problem.

    If the situation of cidsync.upd being empty re-occurs, Software would automatically correct the problem.

    Also, if CID won't get updated, there should be an alert/Notification

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  18. The Interactive Services Detection service terminated with the following error: %%1

    Server 2012 Windows event error:

    The Interactive Services Detection service terminated with the following error: %%1

    Possible to change the way our programs function with Server 2012 and future versions to no longer cause this error

    http://blogs.technet.com/b/home_is_where_i_lay_my_head/archive/2012/10/09/windows-8-interactive-services-detection-error-1-incorrect-function.aspx

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  19. Native support for Syslog

    The Sophos Enterprise Console needs the native capability to generate Syslog messages in response to system events and security incidents.

    Many IT organizations rely on Syslog in order to transmit event messages to other applications for further processing such as: Centralized log storage, Forensic log analysis, IT help desk, Incident Response, Audit, etc.

    When integrating Syslog events with a SIEM or Log Management tool, the tool receiving the events usually needs to normalize the data into their expected format. When creating a Syslog capability, it would be helpful if all of the events IDs were documented so that customers could…

    22 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  20. Use of special characters in passwords for endpoint protection

    Sophos Product Information

    Sophos Product: Sophos Endpoint Security and Control/Sophos Enterprise Console

    Version in Production: AV:10.3 /Console: 5.3.0

    Feature Request Summary

    How will this new feature address your business requirements?: Allowing us to use special characters in our passwords will allow us to fully secure our environment.

    How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 2

    Please be aware that we cannot guarantee the proposed changes will be made or provide any timelines for the request. Sophos would like to thank you for your time and effort in helping us to build a…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.