Endpoint Protection
Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data
-
Sophos update duration for endpoint
Sophos update duration for endpoint clients.
we would like the feature to set day and time for sophos update for endpoint clients. currently Sophos policy only allow you specify number minutes to wait for endpoint client check for update.
our studio machines performance is effected by sophos update. we would like ability set endpoint update to occur ony at Mid-night to 2:00 am every day of the week.
1 vote -
Being able to set different exclusions per plannified scanning
Would be nice to be able to set exclusions on a per-planified scanning way. That way we can create a quick scan daily and a full scan on the weekends.
2 votes -
Scheduler for Sophos SAVXP installation
Feature to schedule Sophos Software (SAVXP) installation, enabling admins to schedule SAVXP installations out of hours.
1 vote -
Wireless
Be able to restrict devices to a certain wireless security type, such as WPA2 only.
2 votes -
the reports should have the local timezone
when running reports out of the Sophos cloud anti-virus, they should show the local timezone...
4 votes -
Allow easy export of all endpoints from SEC to Excel
- Easy export of All Computers in console to a spreadsheet
a. (we routinely do this and it takes 30 minutes to select all and copy to clipboard and paste 38,000 objects to a spreadsheet. If you forget your computer is copying the data to the clipboard and copy something else then you have to start all over. I installed an app called Ditto on my machine for this very reason to have multiple clipboards) - Include the connected status in the data copy – a yes/no column for “Currently Connected?”
- A way to automate a dump of the data to a…
4 votes - Easy export of All Computers in console to a spreadsheet
-
When writing to a device that uses the MTP/PTP/WPD drivers, the data control event gets logged to the local PC, but does not get submitted t
When writing to a device that uses the MTP/PTP/WPD drivers, the data control event gets logged to the local PC, but does not get submitted to the console. On later versions of Windows, the MTP driver seems to be used by default, so that even flash drives, which traditionally used the mass storage driver, are instead using MTP and data control events are only accessible from the local PC. Our only solution at this time is to block PCs with later versions of Windows from writing altogether, which will be unfeasible as these newer versions become more prevalent. When can…
1 vote -
Smooth scrolling of endpoints in SEC
Please somehow allow buffering or something that allows one to smoothly scroll through a long list of endpoints in the SEC. With 30K + endpoints, we see that Page Up / Page Down helps some, but if you click the scroll bar it will pause and then scroll too far forward or backward. It's really annoying if you're looking for a certain IP range or name, for example.
3 votes -
Launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups
There is a known issue where launching the console as a user who inherits membership of the Sophos Full Administrators group via nested groups.
It would be great if this was resolved and nested groups work. This is a compliance breakdown.2 votes -
Device Control on Servers
Sophos Cloud use to have device control on Windows servers. Please add this back in, it's important to reduce the threat surface area of systems, especially servers.
Glue in the USB ports only goes so far!
1 vote -
Console API that can be programmed
Client would like an API interface that can be programmed to remove endpoints that no longer exist or can be removed from the console and database
6 votes -
Exempt device in device control event viewer in other sub estates
Client would like the ability to be able to "Exempt device" in the device control event viewer when not using the "Default" sub estate
1 vote -
Sophos Deployment Packager - Allow Secondary Location on "Full, Managed Packages"
When you choose to make a "Full, Managed" package using the deployment Packager tool. The options for primary and secondary after grayed out as it assumes that the machine will soon get its policy for updating from the management server. I suggest we allow for a secondary location to be set for machines that will not be communicating with the management server for some months but will have sporadic internet access.
1 vote -
Include total # of licensed endpoints in SEC dashboard
SEC does not list total # of licenses related to a customers instance. Instead, support has recommended we go by "managed endpoints." When purchasing additional licenses or installing to new machines, it would be nice to see exactly how many agents we have left to push out.
2 votes -
Ability to copy rules and exceptions between primary and secondary locations in client firewall
The ability to copy rules and exceptions between the primary and secondary location in the client firewall settings.
1 vote -
Add the ability to switch off web control notification balloons
I have seen your article on your knowledgebase: https://www.sophos.com/en-us/support/knowledgebase/113287.aspx I was wondering, is it possible to give the ability to switch the Sophos web control balloons off?
3 votes -
Have the Sophos Installer remove the vShield Thin Agent driver automatically
Request from John Veldhuis: I want the built-in CRT to be able to detect the presence of the thin agent, and remove it.
1 vote -
1 vote
-
CreateOnAccessPreconfig able to set Web Protection state.
Allow the Mac CreateOnAccessPreconfig tool to build standalone mac packages with Web Protection disabled. Useful for large universities, for example, that distribute unmanaged mac packages. (Customer request).
0 votes -
Windows Download Reputation for on premise (SEC managed) endpoints
Download Reputation prompts users if a low reputation file is downloaded, currently available for Standalone installations only
0 votes
- Don't see your idea?