Sophos Central
Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
-
Require Encryption between email domains
We have some companies we work with that require us to enable "Require TLS Encryption" and to fail if that can't be setup. Would be nice to have the option to do so like on the SEA.
1 vote -
More detailed information in logs, reports
Hello,
I have several items that would make Sophos Email gateway more useful.
1. A detailed report showing what Sandstorm actually caught. From an admin's point of view just knowing something happened is not useful. If I had an idea of where a message came from and why it tripped Sandstorm, I could possibly make adjustments to protect us better in the future.
2. A clear reason on the summary page on why a message was deleted or quarantined would be helpful. While you can usually figure it out in the message source information, that is not very time efficient.…1 vote -
Need ability to recover original links from re-written links
One of the critical features that's missing in the Sophos Email Gateway is the ability to recover original links that were removed from an email message via the link rewriting feature. There are many times where an important link is re-written on an email that is not malicious and as customers, we have no way to retrieve it. This poses a major liability with regard to information assurance.
1 vote -
Central Email: allow policy change on distribution lists and public folders
At this time the public folder and distribution lists can only have the base policy applied. You cannot apply a separate/different set of policies and assign it to public folders or DLs; currently only mailboxes have this capability.
Submitting on behalf of customer.
1 vote -
Support for Resent-From header
Currently email forwarding to an external email address is blocked by Sophos Central Email Gateway.
This means that email send to an internal email address, that this then forwarded to an external email account (Resent-From: header item) gets blocked by Sophos Central.
The only way to maintain this service currently is to bypass Sophos Central on outbound email to this forwarded domain (bypassing Sophos Central for this destination).
This is a standard SMTP feature that Sophos have not implemented in Sophos Central.
1 vote -
block an email from the quarantine report email.
Users receive quarantine email and wants to block the emails that are in there without releasing first.
1 vote -
Spoofing prevention doesn't look for Reply to address - it certainly should!!!
This obvious security vulnerability - allows bad actors free reign over our supposedly protected communities.
1 vote -
Request to have option for outlook plugin in submitting spam for sophos central email
Request to have option for outlook plugin in submitting spam for sophos central email
as the current process in submitting spam mail manually is tedious on customer side3 votes -
Quarantine digest needs to be configurable to send more than once per day
Sophos Central's Email Gateway Policy's should allow for more configure options in regards to email messages that are quarantined. Currently, it is not possible to configure the quarantine notification that goes out to all users more than once a day. We are requesting that an enhancement be programmed into the rules for quarantined messages notification allow customers to setup notifications more than once a day. Additionally, some users may want notifications as the messages are quarantined based upon the reason category, or for all categories regardless. Receiving digest emails of messages caught in quarantine sometimes 24 hours after a message…
2 votes -
End user whitelist/block
It would be great if end users could manage their own allow/block list in their quarantine. I know I can set a allow globally, but there are some of users who want some emails and others who don't. So allowing it globally sends it to all. If a end user could add their own block/allow this would make this issue non-existent.
2 votes -
Control the from address for the email digest.
Under Quarantine Settings
Add a control for the from address used for the email digest in the Sohphos Central portal.
Good for when users struggle and can be configured to a helpdesk email.
Ie.
from: helpdesk@domain.com5 votes -
Add RBL list to improve the anti spam detection
Sophos central Email gateway does not have RBL check. It's useful to enforce the spam detection. Actually on our customer we have some problems with that.
1 vote -
Report false positives from quarantine
Would it be possible to submit a false positive to Sophos from the quarantine?
We have a scenario where emails are being blocked and we have to chase the user to submit them to Sophos for examination.
For us we are monitoring the Quarantine as "admins" and would like to report false positives from here.
Thanks
2 votes -
remove the signature off the message digest
This for the Sophos Email Appliance.
Can you add the option to remove the signature off the message digest as it shows with the email address sophosalert@<userdomain>.
This has not been configured and there is no option to remove it.1 vote -
time of click
Time-of-Click to support embedded credentials within the link.
As it stands when you have a link sent that contains credentials the Time of Click conversion loses these and your get a 401. Invalid Credentials message. The workaround is to whitelist the domain and get the email resent, or turn off Time of Click.
7 votes -
Allow and Block list search or filter
If an administrator adds 1000s or even just 100s of allow or block list entries on Central Email gateway it becomes unmanageable.
For example if you configure lets say 100 allow list entries on central - if you wanted to modify/remove a single entry you can only scroll through a single page, you need to scroll to the bottom > let it refresh > scroll to the bottom > refresh > scroll > refresh and so on just to find a single entry.
If you have 1000s of entries this can literally take 15-30 minutes just check or modify an…
4 votes -
With AD sync allow users to modify filters
At this time when you use the ad sync program there are default filters which cannot be modified:
(objectCategory=Person)
(objectClass=User)
(!sAMAccountType=805306370)
(!userAccountControl:1.2.840.113556.1.4.803:=2)Customer has a valid scenario when a employee goes on extended leave their account is disabled on AD but they would still like to receive email on Central. Since AD sync excludes any disabled accounts this mailbox is removed on Central and anyone sending email to them get a bounceback as that mailbox does not exist.
((!userAccountControl:1.2.840.113556.1.4.803:=2) -- indicates to not include disabled accounts)The Request is to allow for users to modify the default search terms when…
1 vote -
Enable Mail Relay for Disabled AD Accounts
It would be very helpful if Central supported active email addresses for disabled AD accounts. In our case, when an employee leaves, we disable their AD account. Oftentimes still need the email address active, beyond creating an alias, etc.
4 votes -
Quarantine: Need to be able to release to a different recipient, ie. security department
When a message is quarantined there should be an option to release it to a different recipient, similar to how it functions within O365/Exchange Online.
Reason: While it may not be know whether a message is true Spam, we should be able to forward that to a qualified in-house forensics person.
3 votes -
Retain details on Advanced Threat detection deletions
When an email is sand-boxed and a true threat is discovered, the email is then deleted, but so are the pertinent details such as headers, exact threat (malware, etc), originating IP, any attachments.
We should be able to retain those should we need them for any of the following purposes:
Legal Proceedings
Advanced Forensics to determine origin/persistence
Additional Network Security Controls2 votes
- Don't see your idea?
