A quick overview of all allowed an blocked devices of the periphery control. With status (blocked or allowed), last used date and time, user and device

Bring back the SORT BY RECIPIENT in quarantined emails

When endpoints get a C2/Generic-A detection they do not pass the destination IP nor the PID of the detection to Sophos Central. The information does exist in the Sophos log on the endpoint.

Seeing that information in Sophos Central will make investigations easier.

Me encanta la herramienta Phish Threat. Pero he detectado un par de puntos que se podrían mejorar.
1.- Que permitiera guardar las campañas sin necesidad de poner una fecha para preparar lanzamientos posteriores, algo así como una plantilla de campaña que se pudiera reutilizar.
2.- La posibilidad de pausar una campaña sin necesidad de pararla. Esta parte es bastante peliaguda ya que si paras la campaña no puedes volver a ponerla en marcha y no hay opción de pausarla.
Un slaudo.

Moving from the UTM to the cloud email gateway I was very disappointed to see this category called bulk and see that it was basically half junk and half necessary emails. The UTM was way better and distinguishing these and did not have this unnecessary category. Honestly the category looks to me like an abdication of the job of filtering spam in the first place. You can either allow bulk, and spend a lot of time blacklisting the junk, or block bulk and spend a lot of time whitelisting the stuff you need. Both are bad options.

Hello Support, We would like to know if the export to CSV option is available on the "Azure VMs" view as it is on the global Servers view ? Indeed the CSV export is possible on the servers section but not on the Azure VMs tab. Thanks

At the policies. Peripheral Control/Peripheral Exemptions section. There are many devices which we have used by our users. But There are no explanation section that who has the devices. If its possible would you add an explation box. It will be great.

Hello may we request a new feature that your sophos agent will not affect other AV for Web Policy and Application Protection only and also kindly add an web category testing on sophos central to check the websites that are block or still allowed

Above is the feature that DNS Filter and Cisco Umbrella has

This is just awful. Makes monitoring my company e-mail about impossible. Something I like to do everyday. Today I couldn't even delete quarantined messages. The sort don't work. You took half of the page and made it just white and unusable. I mean the product was always pretty bad, but it's far worse. It's like someone who has no clue of what they are doing worked hard at it.

Enable email notifications for the license limit exceeds to Administrator

So the new design of the portal is just awful. It was borderline bad before...slow. Takes me forever to review daily activity. Now you made it worse. Instead of being slow with a full page, you condensed it to a half. What is wrong with the other half of the page, why would it need have nothing in it. So scrolling takes twice as long now. The recipient sorting doesnt even sort correctly in the quarantine. I really think the team who designed this should be ashamed of their work....its beyond awful.

I need to be able to open the email in a new window when right-clicking the subject (as before)
I need to select more than 50 at a time
Only 11 lines display when there's room for at least 16 leaving a large blank space at the bottom pf the page

In logs and reports there is an old view/new view swtich - please put this on the quaratine page too

Currently, one email is sent for each file transferred to a removable device. It would be nice to receive one email per 25 or 50 transferred files listing the files transferred within.

Currently, if you have a DLP policy set to alert of allowed file transfers, you will receive one email per file. e.g. If you transfer 500 files to a USB drive, you will receive 500 e-mails.

For policies would appreciate option to "not define" so that individual items can use default policy. Example: default policy blocks all peripherals and then add policy to allow wireless only leaving the others undefined. Another policy that only allows bluetooth. Now computers added to both policies gain both wireless and bluetooth while computers on 1 policy only gain that 1 option. Current setup would require 3 policies (wireless, bluetooh, both) to accomplish similar and this quickly gets out of hand when there is need for multiple variations.

Would be useful to have a way to see endpoints with Tamper protection that is off. This could be either a column in the live status view, or a report. The main reason for this is to find devices where Tamper Protection has been disabled to allow a reinstall of the endpoint but has not been turned back on once the install is complete.

Addition of button to allow reapplying of Policy for 'Policy non-Compliance' to all machines. Currently no way to force reapplying of policy to devices with this alert.

Currently the file size attachment limit is not configurable and I am told by support that it is 50MB. This is much larger than I want and the mismatch with my organization is causing a problem.