Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Remote Workstation scan without sophos installed

    Scan remote ip/workstations

    On the local sophos client or cloud solution it would be nice to manually enter a workstation/server target to scan. As target client may not have the client installed or is a suspected threat.

    Occasionally we have workstations in our environment which are 3rd party managed and it would be useful to scan them occasionally to make sure their AV is catching threats.

    Thanks

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Settings for threat cases

    We would like to have settings for the creation off threat cases.

    For example you can turn off the automatic creation of threat cases for blocked websites or sites with maleware.
    The Websites gets blocked anyway and me as an administrator don't need a threat case for this.

    The only current way is to deactivate the complete detection for malicios websites to stop the creation of threat cases for websites and this is not recommended by a sophos stuff.

    "https://community.sophos.com/products/sophos-central/f/sophos-central/114038/settings-for-threat-cases"

    Thank you for everyone who gives a votes for this. Lets make Sophos Central even better.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Request for Enterprise Features

    OK, Now that I have been using this for a while there are a couple of things that would make this dashboard better, and by better I mean a whole lot better, and possibly not just the dashboard, but the application also.
    1. Whenever there is an error, or an alert, or whatnot, and it says something like reboot required, or policy not in compliance, or realtime protection disabled, there should be a friendly little link or button that then makes the agent take care of restarting, whether on a scheduled time or immediately, brings the device back into compliance,…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Be able to set lower e-mail alert frequencies

    Can we increase reporting to Weekly? Daily reporting being the longest time means each of our staff get about 10 emails everyday which is unnecessary.

    A much better way of doing it would be every week just send one list of alerts instead of a separate email for each individual alert. This gets very excessive very quickly when you have 1000+ endpoints.

    This way Sophos Central does not end up sending massive spam needlessly to our inboxes. As such, we've turned e-mail reporting off until this is fixed.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add Isolation bypass options to the Global Policy Exclusions in the partner console

    Currently to add an allowed host to the Isolation bypass list it much be applied in a policy to individual clients, it'd be great if it could be set at a global level.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Device control not really controlled

    Hello,

    We need to be able to edit the information regarding device control. When a external device is plugged in a computer we don't know to whom it belongs.
    Also, it would be better if we could see in real time that a device is connected to a computer using the USB entry and then decide if we would allow it or not by just clicking a button right beside the information reported.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Application control policy should have "authorized\allowed" applications list like it was for on-premise.

    Application control policy should have "authorized\allowed" applications list like it was for on-premise.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Wir haben Ransomware entdeckt, die versucht, Dateien zu verschlüsseln.

    CryptoGuard hat Ransomware entdeckt in C:\Windows\explorer.exe
    4. Juli 2019 12:48
    FELSOMAT\klippert
    FC16079

    Beschreibung
    CryptoGuard hat Ransomware entdeckt in C:\Windows\explorer.exe
    Endpoint-Typ:
    Computer
    Betriebssystem:
    Windows
    Gerät:
    FC16079
    Ransomware:
    uid: 4168df54-6573-9872-0d06-c33b22839f7d
    family_id: 66a9701e-9365-069b-5687-3c72880d0fd6
    process_alias_path: $windows\explorer.exe
    process_name: Windows-Explorer
    process_version: 6.1
    thumbprint: 20f00333e19359ac81a0ac9dd49f7dd31533f3379a6e57f78bada98b0b7c64cf
    details: Mitigation CryptoGuard

    Platform 6.1.7601/x64 v466 06_3f
    PID 1488
    Application C:\Windows\explorer.exe
    Description Windows-Explorer 6.1

    Filename C:\Windows\explorer.exe

    \\DfsClient\;Q:000000000015ec03\felsomat.intra\dfs-stamm\Dokumentation\KUNDEN\Cc\Chrysler\Chrysler Kokomo_Kommissionen\Machine Ledger\Bilddatenbank Chrysler Kokomo\413948.jpg
    \\DfsClient\;Q:000000000015ec03\felsomat.intra\dfs-stamm\Dokumentation\KUNDEN\Cc\Chrysler\Chrysler Kokomo_Kommissionen\Machine Ledger\Bilddatenbank Chrysler Kokomo\385062.jpg
    \\DfsClient\;Q:000000000015ec03\felsomat.intra\dfs-stamm\Dokumentation\KUNDEN\Cc\Chrysler\Chrysler Kokomo_Kommissionen\Machine Ledger\Bilddatenbank Chrysler Kokomo\354973.jpg

    WBH
    2b1e1f1c18130b16150b1b21
    Process Trace
    1 C:\Windows\explorer.exe [1488]
    2 C:\Windows\System32\userinit.exe [5508]
    3 C:\Windows\System32\KUsrInit.exe [6656]

    Thumbprint
    20f00333e19359ac81a0ac9dd49f7dd31533f3379a6e57f78bada98b0b7c64cf
    Certificate serial number based thumbprint
    3c751de1eed7509cc2ebc969478791da9154796581e7c0f08b75ee0163630fd0
    process_path: C:\Windows\explorer.exe
    type: CryptoGuard
    process_pid: 1488
    version: 3.7.12.466
    1 -…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Can't download components

    I can't seem to be able to download the endpoint only installer. If I deselect encryption and intercept x from the "Choose Components" option, the download button greys out.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Sophos central

    Can we redirect users accessing certain HTTPS websites to a predefined webpage and allow them if they still have a business need. especially when they are uploading any data to a HTTPS or FTP(S) which might fall under data leak protection. Unless you popup a warning message or redirect them to a page and then secure a consent from user.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Sophos Central

    Popup a warning message when a user tries to access HTTPS website to remind the user on a corporate policy. These days most of the websites are on https, and we need to alert end users accessing certain website to remind about the corporate policy and refrain on unintended actions.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Endpoint service restart

    Unable to start or restart services from the endpoints and sophos should be reinstalled to get problem rectified

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Increase the timeout for policy non-compliance alert

    Please increase the time-out for policy non-compliance.
    Alerts are creating too many false positives

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Detect iOT capable items on the domain network, for possible protection without an agent being installed on iOT, such an example is a printe

    Detect iOT capable items on the domain network, for possible protection without an agent being installed on iOT, such an example is a printer that has windows 10 OS in the background or a touch screen with windows 10 OS, we may not want to install an agent , but have the ability to scan and detect any possible risks , or at least be made aware in-case of remedial action.

    if this could be visible in the central dashboard this could be usefull for Cyber essentials reporting

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Deleting past Phishing Campaigns from Sophos Phish Threat

    Requesting ability to delete past Phishing Campaigns from Sophos Phish Threat

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Agent Version on devices for Sarbanes Oxley report

    I need a report or a screenshot of the Vendor, Product Name, and Agent Version for my auditors. It would be as simple as adding a column under the device list so that it can be exported into a csv file. This is required for the Sarbanes-Oxley Act to prove we have updated endpoints.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Multiple Scan Schedules - Threat Protection Policy

    There needs to be the availability to establish multiple scan schedules within the Threat Protection policies. Since users can only subscribe to one policy, this seems like an obvious option to have available. If you want to run quick scans on certain days and deep scanning on other days or perhaps change up the scanning times on weekends...None of this is possible. You can only set 1 time and 1 type of scanning for a specific range of days and that's it.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Don't force us to install licenses we don't have.

    End users are not going to use a command line to install Endpoint support, we only have a limited number of Intercept X licenses so we are constantly out of compliance since we can no longer install Endpoint with Intercept X.

    Either incorporate it as the same product, or separate it so that it can be installed separately.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Manipulationsschutz

    In der alten UTM Version gab es die Möglichkeit ein zentrales Kennwort für den Manipulationsschutz zu hinterlegen. Dies wäre auch in der Sophos Central wünschenswert, da nicht jeder Rechner online ist und somit das ausschalten des Manipulationsschutzes über die Richtlinie nicht immer sofort möglich ist. Außerdem hat bei uns im Haus nicht jeder Admin die Berechtigung dies im Sophos Central zu steuern.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Website Tag Export

    There should be website management tag list, that we should be able to export from Sophos central.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.