Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Feature Request

    We need the ability to import exclusions into Sophos. When transferring from another product, this can be extremely time consuming.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Tamper protection

    Hello Sophos

    Sophos Central has now way to tell us how many devices have tamper protection enabled/disabled.
    Please provide the customer with visibility as to how many, and which devices have tamper protection disabled?
    Audit log states: update tamper protection. But we can't tell if it is set to enabled or disabled?
    Same event logged for enable / disable!

    Kind regards
    Kevin

    8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. web site management page sorting and search ability

    Add sort and search to the tagged web sites in website management

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Push agent via Update Cache / Message Relay

    Create the possibility to push an agent wihout having to download and install it. Probably could be realized by expanding update cache and/or message relay servers with agent push possibility.

    19 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Speed Rates Drastically Decreased

    Speeds drastically decreased when Sophos is enabled. Pipe in is 500/50 and we only get 160/50 hardlined. Confirmed this by disabling Sophos and then get near the 500/50 rate. Tried opening a ticket in the portal and continue to get an error submitting the ticket request.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Bug Complaints

    DLP Log is not workable

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. for the auto isolation feature create default global exclusions that can be turned on/off for common remote desktop programs

    for the auto isolation feature create default global exclusions that can be turned on/off for common remote desktop programs so that techs can ahead and connect to these computers to do troubleshooting.

    common remote desktop programs should include:

    windows remote desktop
    dameware
    dameware remote everywhere

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. be able to remove individual computers that have been auto isolated

    Please give us the ability to be able to remove individual computers that have been auto isolated. There should be a button underneath the auto isolated message for the computer that an admin can click to do this.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Peripheral Control - Confirmation / Warning when Blocking Wireless

    Peripheral Control should provide a secondary confirmation or warning when switching the wireless option from 'Allow' or 'Block Bridged' to 'Blocked'. We had an incident where an administrator was instructed to change the setting to Block Bridged, but selected Block and saved the policy. This bricked many systems causing a major outage.

    It would be nice if an additional warning or confirmation popped up either when selecting 'Block' under Wireless or upon attempting to save the policy stating something like 'You are blocking all wireless adapters. If any computers currently access the network with only a wireless connection you will…

    3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Feature Request - Add unique 256 Hash prior to false positives

    Feature request: Allow adding Unique 256 Hash as exclusions prior to false positives.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Improve alerts

    Please could you add to high priority (or according to the security threat) an alert when a component failed to be installed?
    Example, one server of mine returned an error saying:
    "Failed to install savxp: general error"
    However, I didn´t receive any alert on our emails. That way we believe the server is not well protected as it should. Or maybe this component, is useless?
    Thank you,
    Marcio

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Email alerts for all threat detection

    Very Disappointed as sysadmin, there is no functionality in Sophos to configure email alerts for all threads detected.
    We want email alerts for any detection regardless of if that has been cleared by Sophos automatically or not. Its an urgent business requirement.
    I hope to see this happening soon.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. reset endpoint halth status

    sometimes the endpoint health status remains in red if the detection is too old or in other situations.
    Resetting the endpoint status from Central could help in understanding real client problems and getting focus on them.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Suspicious file download

    It would be great being able to download the suspicious file from Central (also if the endpoint is actually offline) to investigate on them. Another option would be to directly report virustotal result, as this is probably the first check all of us try on suspiciuos file.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Threat analisys center yara taxii

    It would be useful to be able to import external yara taxii and stix data and schedule the running stage with alerting on detection. Also, using sha1 could be of help.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Threat analisys center yara taxii

    It would be useful to be able to import external yara taxii and stix data and schedule the running stage with alerting on detection. Also, using sha1 could be of help.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Ability to review and restore cleaned / safestore files without the need of a global exclusion

    The process to restore a file requires you to create a global exclusion in a way, that does not match the manual exclusion process.

    Full path, SHA, or Signing Cert ? These seem like application controls not AV / PUA exclusions.

    4 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. export and import website list of website management in globalsetting

    NEED! export and import website list of "website management" in globalsetting

    we are moving to enterprise dashboard. we have added over 100 websites in each branch but need too much effort to re-add in to the enterprise global setting.

    6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. 2 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Tamper Protection Whitelist for other security products

    Tamper Protection Whitelist to allow other security programs to interact with Whitelisted Registry settings. Crowdstrike Falcon is used to collect data for Digital Forensics and is needing set a registry setting in a place protected by Tamper Protection.

    1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.