And especially the updating issues, the customer is not fully satisfy with the SMTP notifications, and would like to send the SUM alerts to the Nagios console.2 votes
Provide SNMP messages for updating issues2 votes
Sophos Endpoint Protection. SMTP support for Office 365 using authentication including password, smtp port modification
SMTP support for Office 365 using authentication including password, smtp port modification
office 365 needs port 587
username and password10 votes
Customer installed Sharepoint and error was because the log location on the database was set to a location that didn't exist.
Client would like to be able to select the data & log file locations,
which is pretty standard on database installs1 vote
Would be really useful to have Policy Infringements and Virus Alerts send from the Sophos Enterprise Console as opposed to being sent from the Endpoints (Clients). Reason being that the email alerting only works when all endpoints have access to the SMTP server, which is really not recommended. It's sort of like making your network less safe, to make it more safe... which makes no sense.
Kind regards1 vote
Could you possibly add the ability to scan newly created text or html documents for common phrases found in the ransom notes of current ransomware strains? Seems to be a common sense approach to detecting this kind of infection and preventing it from spreading much beyond the original point of infection. Think of it as DLP in reverse, people really shouldn't have the need to type things like "What happened to your files" or "Your files have been encrypted using the latest..." so the only possible source would be malicious software. On a Windows server you could easily get the owner of the file and change the ACL on all network shares to either block that user or change the rights to read only.
Could you possibly add the ability to scan newly created text or html documents for common phrases found in the ransom notes of current ransomware strains? Seems to be a common sense approach to detecting this kind of infection and preventing it from spreading much beyond the original point of infection. Think of it as DLP in reverse, people really shouldn't have the need to type things like "What happened to your files" or "Your files have been encrypted using the latest..." so the only possible source would be malicious software. On a Windows server you could easily get the…2 votes
Currently, the SEC only triggers policy updates if the policy is changed, a group is switched from one policy to another, or if a user manually triggers a policy update with "Comply with policy". In a situation where an Endpoint is being restored from an image with an older policy, SEC will never send an update message if it is not triggered manually. Clients using VDI are especially susceptible to this.8 votes
Option to monitor MTD via the Enterprise Console1 vote
In politics "Application control" to add a list, if you arrive 30 minutes after setting the applications you happen to accidentally click outside the window you lose all the work. It would be nice just could close this window giving the "Cancel" or "Save" button. Thank you!1 vote
Would like to see an option to run a manual AD sync, rather than:
A. Waiting for the scheduled sync to occur
B. Changing the sync schedule to something else, then back again (currently the only way to kick off a sync).1 vote
I would like to know if there is a way to capture a list on excel compatable format of the various categories and options selected in each policy created. Especially in the controlled application
list of each policy, so I can make sure they are kept updated based on the reporting and alerts raised. Or if there is a way to report on an audit of changes made to any policies created in Sophos cloud for checking or reference if there is a query helps with
cybsecurity essentials1 vote
A Platinum customer asking if Dashboard alerts can be configured for all SUMs; "Last protection from Sophos" so email alerts can be sent if Child SUMs fails or errors but this only seems to do email alerts for the SUM that downloads from Sophos and not the child SUMs that update from their parent SUM.
Basically, child SUM update from it's parent but a distribution or the whole of that child SUM fails with some sort of error, customer would like to know about this.
Can this be added to the product?
Detailing in a detection was triggered by a read / write or rename process assists in determining the impact and source of an infections, it also assist in the cleanup and quite often cleanup is not available due to the file never being written to the disk1 vote
Add automatic update after install of the "Sophos Deployment Packager" installer packages. The installer design presently only installs Sophos and does not do an update at the end of the install. This forces new installers being built to stay current when used as an in place install. If there was an automatic update after install the file differences would come down smoothly over the network connection.2 votes
Columbia University would like to have an option to shift click the console to run as a different user since they have multiple accounts within AD for the same administrators.1 vote
In the runtime section you have Java, Flash and Silverlight listed however in its entirety. Is it possible to expand the list to the version
In the runtime section you have Java, Flash and Silverlight listed however in its entirety. Is it possible to expand the list to the versions of these products as you do with Adobe Reader. We would like to block specific versions of Java, Flash and Silverlight?2 votes
Many Linux use recoll as a search database/indexing tool.
Problem: when recoll (updates its database there are many tmp files generated.
As they are somewhat packed, it seems that many of these files generate false virus alerts
(as packed content contains "signatures").
Please think about setting "/tmp/rectm*" onto an ignoreliste by default.
I couldn't find out how to configure the Sophos deamon so I simply set recoll indexing on hold
when the first "virus found" message arives as workaround, but I'd appreciate a hint.1 vote
Ability to turn on and off web protection based on the submit the device is on. Example - if a device / laptop leaves the network, the filter is turned on but when they are on the corporate network it is turned off.3 votes
On the behalf of a Platinum customer
The administrator has created a single instance of SUM on separate server and would now like the ability to backup the SUM configuration (a use example could be if the OS is about to be upgraded). Currently the only option for the admin is to backup and restore the complete database along with creating a brand new installation from the SUM share. As Sophos supports the creating of new installation of SUM they should also support a method to only backup the SUM configuration, as the database may reside on a different box.1 vote
Sophos update duration for endpoint clients.
we would like the feature to set day and time for sophos update for endpoint clients. currently Sophos policy only allow you specify number minutes to wait for endpoint client check for update.
our studio machines performance is effected by sophos update. we would like ability set endpoint update to occur ony at Mid-night to 2:00 am every day of the week.1 vote
- Don't see your idea?