Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Scanning options for .arc and .warc in SAV for Linux

    Currently, using the sweep -vv command we can see that warc and arc are not on the list of container formats to be scanned. Can these be added to the list?

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  2. Allow customer to choose Sophos Administrator

    Sophos Administrators are configured during deployment using the Local Administrators group. My suggestion is to allow I.T. customers to choose the users or groups that can be Sophos Administrators.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  3. Disable webcontrol alerting on user client sophos

    We would like to have, in enteprise console, checkbox that disable, user side, warning about websites blocked without needing to completely remove virus alerting that include web control alert too.

    It would be useful mainly on website categorized with "Warning".

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
  4. I would like to request your team to add the selection of groups/container upon exemption on Device Control Policy. This will give ease on

    I would like to request your team to add the selection of groups/container upon exemption on Device Control Policy. This will give ease on tedious process we have right now in which we will have to access each group policy and exempt the same device. On the email sent earlier, I have attached sample image, hope you can consider adding that to your features not only on device control policy but also to other policies that may apply the same for easier management.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. POP UP ALLOW / DISALLOW in Endpoint Firewall

    It would be nice to have POP UP control to ALLOW and DISALLOW new applications as they activate in Windows 10 just like it did in Windows 7. I am NOT a computer scientist nor a geek so I do not know what programs I need to NOW manually add to the firewall that I had previously automatically allowed prior to upgrading to Windows 10, nor do I know all the components that need to be added when there are multiple sub-program calls that need to be allowed.

    This not only concerns applications, but even those parts of the Windows…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  6. Deleting Virus on demand with SEC which is only blocked

    Sometimes I've got a Virus as Java Script, html-code, mail attachments ... which is downloaded and located in the IE Tempfiles. Sophos does often not provide a method to fix it.
    I wish to delete these files with the SEC on demand.

    The Solutions Sophos provides are:
    1. go to the client, disable Sophos, delete the file, enable sophos
    - I manage computers in other companys, so I don't like this solution
    2. In the SEC set as policy delete Virus, scan for Virus, set policy back to block
    - I prefer the blocking setting, in case of a false…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  7. Use PostgreSQL database engine for SEC

    MSSQL Express is difficult to administer if any of its core DBs have a problem and it's limited to running on Windows. Is there any chance you can take a look at porting to something like PostgreSQL for the database back-end? This would gain better and easier management, more robustness, cross-platform capability, no limits on DB size or performance, and would not increase and-user cost since PostgreSQL is free open-source software. It has a Windows-based GUI administration tool as well (pgAdmin.)

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  8. Add functionality to RMS such that it is compatible with Windows 10 Soft-Disconnect

    Currently, when the Windows 10 Soft-Disconnect feature is enabled, the presence of RMS prevents Windows from switching from the Wireless adapter to the Wired. This is because RMS keeps sessions to the Console server open indefinitely, and Soft-Disconnect is waiting for all open connections to be closed before making the transition.

    This request is to change RMS such that it supports Windows 10 Soft-Disconnect.

    2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  9. 6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  10. Ability to use %AppData% in Enterprise Console Policy

    It will be very helpful to be able to use the %AppData% variable when creating on-access scanning exclusions in Enterprise Console.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Flag idea as inappropriate…  ·  Admin →
  11. Environment Variable Exclusions

    Could we please request that the ability to exclude environment variables be added to the Enterprise Console?

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  12. End user control for some features

    Every other AV we've used in corporate environments allows for SOME ability by the end user to add exclusions if needed, yet still disallowing them the ability to shut down protection overall. I'm told by Sophos support this is not an option at all here.

    If you have a company with someone overseas, who is on the phone with a software vendor who is saying they should exclude a specific file, it would help if they COULD do that, rather than waiting 8 or 10 hours for someone to wake up on the other side of the world who can…

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
  13. AutoUpdate should be way more than an hour

    I think that having AutoUpdate set for an hour could be very noisy and we had an incident last Monday where there were a bunch of processes triggered by automatic updates. Is there a way to increase this to once or twice, maybe 3 times a day instead of every hour?

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
  14. Sophos Mobile Control

    Upon the installation of Sophos Mobile, there is a point where you are asked if you want to turn ON location and the choice is either “Never” or “Always”. This should NOT be
    an option, when it comes to corporate own products, it should be “Always” by default on a Cell phone. Can your development please update the app or generate another installation with that setting enabled by default and grayed out.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  15. Desktop Ploicy

    Can you please add a desktop policy, this is critical in getting this product implemented with users that have multiple roles.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
  16. Improve Error Messages

    Reduce the amount of error "abstraction" in the SEC so as to provide useful information to aid diagnosis. Simply seeing errors such as "The installation failed" is completely useless, as it masks numerous other causes of issues that would otherwise be very easy to remediate. The actual error message that occurred, e.g. MSI error message should instead be passed upstream to the SEC.

    5 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  17. Wildcard for firewall launching process executables

    Certain Web Collaboration companies use a launching process that includes a random launching process executable that changes with every click on the link to enter the meeting. Adding the launching process to a firewall policy will not allow access as the next time the user tries to enter the meeting, the process has changed the random part of the launching process executable and it will still be blocked. Being able to add a hidden launching process with a wildcard would alleviate this issue.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  18. Auto scan on joining SEC

    Option to enable an auto full disk scan when a machine is first discovered in SEC. This would mean any machine which is being deployed via Group Policy would be automatic scanned when its first joined. Instead of waiting for the first scheduled scan time - it could be infected until this point.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Flag idea as inappropriate…  ·  Admin →
  19. exception

    Ability to view in details wich part of a policy have been modified from users, evaluate the exceptions added by endpoints, so accept in order to integrate the centrally managed policy, or deny them.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
  20. More Granular Device Control

    Currently, we block all removable storage unless permitted by exemption. We would like to turn on device control for MTP/PTP but we cannot do so in the same policy unless we block it the same way as our removable storage. Please make Device Control more granular so that I can choose to block certain device types entirely, while still enabling me to detect but NOT block others (such as MTP/PTP). I want to be able to detect MTP/PTP for a few weeks to see what devices are being used before I block them.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Control  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.