Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. easier to add and block url categories

    I would like for it to be easier to allow and block websites via url or ip address.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. more details fro reports.

    top blocked Categories page.
    I would love to be able to click into categories and determine which users or machines visited which sites.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Add version informatino to Controlled Updates screen

    Please add the version number(s) of the software that are included with the Software releases being managed in the controlled updates screen. It's nearly impossible to identify what a "release date" equates to in regards to the version number(s) of the software being deployed. Thank you.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. mac isolation

    Please provide the capability to remotely isolate MAC OS X systems.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Disable Tamper Protection For A Selection Of Clients

    Allow admins to disable TP on a collection or group of PCs, rather than globally disabling TP or going into each device, one by one.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. scanned links and banners should not appear in logs as if user visited them or a way to filter that

    Getting lots of messages of sites visited when links and banners are scanned - creates lots of noise in the logs.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Web Filtering Policies - By Device

    We have a large number of laptops and it would be great if we could set up a policy just for them so it would apply to any user who has a stand alone device

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Why ask a question if there is only one possible response?

    How dumb, why do you have a question that asks "Did this help you?" and than only provide a button that says yes? How will you ever know that it wasn't helpful at all? Stupid.
    Ever since moving to Central I just want to get a solution that is actually designed to be managed as Sophos just sucks up my life.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. User Profile Disk conversion

    When cookies, viruses or other malicious content is found in a user's UPD, Sophos ID's the volume instead of the User.

    Example: When malicious content is found, the device is ID'd as \Device\HarddiskVolume6\ instead of the Username or owner that owns the disk.

    The only way to discover which user's UPD is is to use Diskpart "list volume" commands via CMD.

    Would be great if Sophos Central would ID this instead of showing the volumes.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Support issue

    i m not getting proper support from sophos endpoint

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. More options besides automatic cleanup

    Upon virus detection, could we have more options(quarantine, rename detection and/or move to a specific location) instead of automatically cleanup?

    Some infected word/excel documents are corrupted/deleted after automatic cleanup which is causing a lot of issue to the enduser.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Remote Workstation scan without sophos installed

    Scan remote ip/workstations

    On the local sophos client or cloud solution it would be nice to manually enter a workstation/server target to scan. As target client may not have the client installed or is a suspected threat.

    Occasionally we have workstations in our environment which are 3rd party managed and it would be useful to scan them occasionally to make sure their AV is catching threats.

    Thanks

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Settings for threat cases

    We would like to have settings for the creation off threat cases.

    For example you can turn off the automatic creation of threat cases for blocked websites or sites with maleware.
    The Websites gets blocked anyway and me as an administrator don't need a threat case for this.

    The only current way is to deactivate the complete detection for malicios websites to stop the creation of threat cases for websites and this is not recommended by a sophos stuff.

    "https://community.sophos.com/products/sophos-central/f/sophos-central/114038/settings-for-threat-cases"

    Thank you for everyone who gives a votes for this. Lets make Sophos Central even better.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Request for Enterprise Features

    OK, Now that I have been using this for a while there are a couple of things that would make this dashboard better, and by better I mean a whole lot better, and possibly not just the dashboard, but the application also.
    1. Whenever there is an error, or an alert, or whatnot, and it says something like reboot required, or policy not in compliance, or realtime protection disabled, there should be a friendly little link or button that then makes the agent take care of restarting, whether on a scheduled time or immediately, brings the device back into compliance,…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Be able to set lower e-mail alert frequencies

    Can we increase reporting to Weekly? Daily reporting being the longest time means each of our staff get about 10 emails everyday which is unnecessary.

    A much better way of doing it would be every week just send one list of alerts instead of a separate email for each individual alert. This gets very excessive very quickly when you have 1000+ endpoints.

    This way Sophos Central does not end up sending massive spam needlessly to our inboxes. As such, we've turned e-mail reporting off until this is fixed.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Add Isolation bypass options to the Global Policy Exclusions in the partner console

    Currently to add an allowed host to the Isolation bypass list it much be applied in a policy to individual clients, it'd be great if it could be set at a global level.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Device control not really controlled

    Hello,

    We need to be able to edit the information regarding device control. When a external device is plugged in a computer we don't know to whom it belongs.
    Also, it would be better if we could see in real time that a device is connected to a computer using the USB entry and then decide if we would allow it or not by just clicking a button right beside the information reported.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Application control policy should have "authorized\allowed" applications list like it was for on-premise.

    Application control policy should have "authorized\allowed" applications list like it was for on-premise.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Wir haben Ransomware entdeckt, die versucht, Dateien zu verschlüsseln.

    CryptoGuard hat Ransomware entdeckt in C:\Windows\explorer.exe
    4. Juli 2019 12:48
    FELSOMAT\klippert
    FC16079

    Beschreibung
    CryptoGuard hat Ransomware entdeckt in C:\Windows\explorer.exe
    Endpoint-Typ:
    Computer
    Betriebssystem:
    Windows
    Gerät:
    FC16079
    Ransomware:
    uid: 4168df54-6573-9872-0d06-c33b22839f7d
    family_id: 66a9701e-9365-069b-5687-3c72880d0fd6
    process_alias_path: $windows\explorer.exe
    process_name: Windows-Explorer
    process_version: 6.1
    thumbprint: 20f00333e19359ac81a0ac9dd49f7dd31533f3379a6e57f78bada98b0b7c64cf
    details: Mitigation CryptoGuard

    Platform 6.1.7601/x64 v466 06_3f
    PID 1488
    Application C:\Windows\explorer.exe
    Description Windows-Explorer 6.1

    Filename C:\Windows\explorer.exe

    \\DfsClient\;Q:000000000015ec03\felsomat.intra\dfs-stamm\Dokumentation\KUNDEN\Cc\Chrysler\Chrysler Kokomo_Kommissionen\Machine Ledger\Bilddatenbank Chrysler Kokomo\413948.jpg
    \\DfsClient\;Q:000000000015ec03\felsomat.intra\dfs-stamm\Dokumentation\KUNDEN\Cc\Chrysler\Chrysler Kokomo_Kommissionen\Machine Ledger\Bilddatenbank Chrysler Kokomo\385062.jpg
    \\DfsClient\;Q:000000000015ec03\felsomat.intra\dfs-stamm\Dokumentation\KUNDEN\Cc\Chrysler\Chrysler Kokomo_Kommissionen\Machine Ledger\Bilddatenbank Chrysler Kokomo\354973.jpg

    WBH
    2b1e1f1c18130b16150b1b21
    Process Trace
    1 C:\Windows\explorer.exe [1488]
    2 C:\Windows\System32\userinit.exe [5508]
    3 C:\Windows\System32\KUsrInit.exe [6656]

    Thumbprint
    20f00333e19359ac81a0ac9dd49f7dd31533f3379a6e57f78bada98b0b7c64cf
    Certificate serial number based thumbprint
    3c751de1eed7509cc2ebc969478791da9154796581e7c0f08b75ee0163630fd0
    process_path: C:\Windows\explorer.exe
    type: CryptoGuard
    process_pid: 1488
    version: 3.7.12.466
    1 -…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Can't download components

    I can't seem to be able to download the endpoint only installer. If I deselect encryption and intercept x from the "Choose Components" option, the download button greys out.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.