Sophos update duration for endpoint clients.

we would like the feature to set day and time for sophos update for endpoint clients. currently Sophos policy only allow you specify number minutes to wait for endpoint client check for update.

our studio machines performance is effected by sophos update. we would like ability set endpoint update to occur ony at Mid-night to 2:00 am every day of the week.

Would be nice to be able to set exclusions on a per-planified scanning way. That way we can create a quick scan daily and a full scan on the weekends.

Feature to schedule Sophos Software (SAVXP) installation, enabling admins to schedule SAVXP installations out of hours.

Be able to restrict devices to a certain wireless security type, such as WPA2 only.

when running reports out of the Sophos cloud anti-virus, they should show the local timezone...

Please somehow allow buffering or something that allows one to smoothly scroll through a long list of endpoints in the SEC. With 30K + endpoints, we see that Page Up / Page Down helps some, but if you click the scroll bar it will pause and then scroll too far forward or backward. It's really annoying if you're looking for a certain IP range or name, for example.

There is a known issue where launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups.
It would be great if this was resolved and nested groups work. This is a compliance breakdown.

Sophos Cloud use to have device control on Windows servers. Please add this back in, it's important to reduce the threat surface area of systems, especially servers.

Glue in the USB ports only goes so far!

Client would like an API interface that can be programmed to remove endpoints that no longer exist or can be removed from the console and database

Client would like the ability to be able to "Exempt device" in the device control event viewer when not using the "Default" sub estate

When you choose to make a "Full, Managed" package using the deployment Packager tool. The options for primary and secondary after grayed out as it assumes that the machine will soon get its policy for updating from the management server. I suggest we allow for a secondary location to be set for machines that will not be communicating with the management server for some months but will have sporadic internet access.

SEC does not list total # of licenses related to a customers instance. Instead, support has recommended we go by "managed endpoints." When purchasing additional licenses or installing to new machines, it would be nice to see exactly how many agents we have left to push out.

The ability to copy rules and exceptions between the primary and secondary location in the client firewall settings.

I have seen your article on your knowledgebase: https://www.sophos.com/en-us/support/knowledgebase/113287.aspx I was wondering, is it possible to give the ability to switch the Sophos web control balloons off?

Request from John Veldhuis: I want the built-in CRT to be able to detect the presence of the thin agent, and remove it.

Allow the Mac CreateOnAccessPreconfig tool to build standalone mac packages with Web Protection disabled. Useful for large universities, for example, that distribute unmanaged mac packages. (Customer request).

Download Reputation prompts users if a low reputation file is downloaded, currently available for Standalone installations only