Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Endpoint Protection

Suggest, discuss, and vote on new ideas for Sophos Endpoint Protection. Comprehensive security for users and data

Suggest an Idea...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Restriction to Discover Computers

    Problem:
    We are using Sophos in a multivendor environment which contains over 200,000 clients. The "Discover Computers" button is available for every Sophos admin, because there is no option to restrict this feature. Regularly somebody who is looking for a client presses the discover computer button. Now every network device which is reachable will be imported into the Sophos Enterprise Console and listed as an "unmanaged device". If we don't restart the SEC, sometimes more than 200,000 “unknown devices” are listed in the default "unassigned" group. We can delete these clients but they will remain in the Sophos database until…

    18 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      0 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
    • Uninstall and Repair Endpoints via Sophos Enterprise Console

      The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

      66 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        8 comments  ·  Sophos Enterprise Console (SEC)  ·  Flag idea as inappropriate…  ·  Admin →
      • Application version control

        Additional options in Application Control, especially for browsers.

        Being able to block:

        Versions of Chrome < X (Chrome current version is 62)
        Versions of Firefox < X (Firefox current version is 57)

        Being able to block versions of Chrome < 59 and Firefox < 53 would be a great start in killing off legacy browsers with lots of vulnerabilities from being permitted to browse the Internet.

        9 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          1 comment  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
        • Force Uninstall Utility

          A support tech told me awhile back that you may be working on a utility to forcefully remove the software and all of its relevant registry keys, folder structure, services, etc. I think this should be made a priority as it seems we are constantly uninstalling and reinstalling only to have the same problems after reinstalling.

          Your KB article for a manual uninstall is insufficient.

          34 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            8 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
          • Tamper Protection Report

            Currently the only way to tell if Tamper Protection has been disabled for a device is Sophos Central is to view the Summary page of each device. My suggestion is to add a column to the existing "Servers" and "Computers" reports (under Logs & Reports -> Endpoint & Server Protection) that indicates whether or not Tamper Protection is enabled.

            14 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              4 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
            • Stop alerting when endpoint not updated in 2 days; Or make this configurable.

              We need to be alerted only on important conditions. Being alerted that a laptop has missed two updates (laptops are often off for more than two days) is not helpful and, in fact, may result in the team paying less attention to Sophos alerts. We need to be able to configure this or at minimum, please change the default. Thanks,

              37 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                2 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
              • Give the user *some* kind of indication that a restart is required

                I'm getting multiple *Medium* level notifications per week about sophos endpoint clients that are "out of date". I now know, after two weeks of interactions with sophserv tech support that the issue has (and continues to be) that many computer users don't restart their computer because they don't have to, and the endpoint security client sometimes requires it, but doesn't tell them. They would happily do it if they knew it was necessary, but because it's not, I get pounded with multiple *Medium* level notifications per week indicating that their clients are out of date. This is super annoying, and …

                35 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  4 comments  ·  Updating  ·  Flag idea as inappropriate…  ·  Admin →
                • alerts

                  We get alot of alerts that state "One or more Sophos services are missing or not running" or "realtime protection has been disabled." We then have to go into Central and look up those machines only to find that 9 out of 10 times the alert has cleared itself. There is an Event Log entry that states "all services are running" or "realtime protection has been enabled." It would be nice to have an alert that is triggered from those resolved entries. That or be able to create an alert from Events contained in the Event Log.

                  17 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    2 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                  • teamviewer

                    Please add ability to block TeamViewer by version.

                    1 vote
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                    • API

                      It was usefull to get all active Customers with ALL active liences via API

                      1 vote
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
                      • Sophos for Home to Cloud upgrade path incentive

                        I've used the Sophos for Business Cloud version and I was reasonably impressed. I did like that I could export JSON of events and that I could install the agent on a server OS or Linux OS, which was a really big thing. I have an Ubuntu Desktop 16.04 and RHEL 7.2 desktop that I perform testing on, but I'd really like to have an upgrade path.

                        So for home, I think one can have up to 5 or so devices, perhaps 10. Is there a means to permit one to upgrade ones account to such a small number without…

                        1 vote
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                        • Drill down / pivot in event or alert reports

                          Alerts: Please add ability to click somewhere on the Alert line to drill down or pivot to the details of the alert. In the popup/window, for file related alerts like PUA, please provide the file name and path, hash, and date metadata.

                          Events: In the reports like Web Stats, thanks for the ability to click from the Summary into a list of events. However, the list is still only a summary for that user/computer. Please allow further drill down/pivot such that when we click on a line/event, it actually shows the sites visited which would aid in categorization correction or…

                          1 vote
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  Cloud Console  ·  Flag idea as inappropriate…  ·  Admin →
                          • Sophos Home for Linux and IoT Devices

                            One of the biggest solutions that is missing from Sophos lineup on the consumer vs cloud for SMB market is a Linux Home agent. This doesn't need to be anything more than what is on the MacOS versions. For instance, there are tons of home users that have ARM-based Chromebooks or Linux OS on Rasperberry Pi units, why not consider an easy port for your same client base?

                            1 vote
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                            • Sophos Home premuim Should Have A support Like bussiness products

                              sophos home premuim should have a support alongside community and i will hope premuim version be available soon

                              1 vote
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                0 comments  ·  Flag idea as inappropriate…  ·  Admin →
                              • Users that Allowed USB access reporting

                                we need generate report for how many user that allow USB access.

                                1 vote
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  0 comments  ·  New idea  ·  Flag idea as inappropriate…  ·  Admin →
                                • Allow custom web block warns instead of block or allow

                                  It would be nice to manually add websites to the warn list instead of only being able to add websites to a block or allow. Warning is useful as people can still get through if it is legitimate.

                                  1 vote
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Block Grammarly

                                    Grammarly can be installed without admin rights into a user's profile, but requires an admin to... fail to remove it. I ended up torching the folder containing it, but it's left a mess on that PC. Since Grammarly is effectively a keylogger that sends to the cloud, it doesn't meet our security policies.

                                    1 vote
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      0 comments  ·  Application Control  ·  Flag idea as inappropriate…  ·  Admin →
                                    • Improve documentation for excluding on-access folders

                                      Documentation says to specify a path to exclude as:

                                      C:\my_own_data

                                      but doing so gives an error "Ungültige Daten eingegeben", "Dies ist kein gültiger On-Access-Ausschluss"

                                      Using

                                      C:\my_own_data\

                                      works (mind the trailing slash).

                                      Please update your documentation!

                                      Thanks.

                                      1 vote
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        0 comments  ·  General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Make Real time scanning - Local files and network shares applicable on Linux

                                        Apparently the policy setting:
                                        "Real-time scanning - Local files and network shares" that can be configured for:
                                        on read
                                        on write
                                        only applies to Windows clients and not to Linux clients. On Linux you have to manually change the preference using eg:
                                        /opt/sophos-av/bin/savconfig set TalpaOperations -- -open
                                        to disable "on read"
                                        But obviously:
                                        1. This is not scallable
                                        2. This makes the Linux Sophos AV impaired in terms of feature comparison to Windows
                                        3. It's very problematic on eg. NFS servers where on open NEEDS to be disabled due to high CPU usage that sophos processes may spark.

                                        4 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          0 comments  ·  Linux Server  ·  Flag idea as inappropriate…  ·  Admin →
                                        • customise message in Web control on Endpoint protection.

                                          Need to customise a Denied message in Web control on Endpoint protection.

                                          1 vote
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            0 comments  ·  Web Security/Control  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 38 39
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-lightbulbCreated with Sketch.