Currently if an email address or domain is whitelisted in the inbound allow list then Time-of-Click protection is not applied to any links in the email. This results in incoming email from a comprised account not being protected. Please apply TOC protection to whitelisted emails in a similar way to virus protection being provided on such emails.

While creating an automated report as Admin, Only the report creator can able to receive the report. Multiple recipients cannot be added to the list. My suggestion is to configure multiple recipients to send the report.

When an mailbox is not declared in Sophos mail, Sophos relay reject the inbound traffic as expected, anyway we would have the option to know in some report or log available in the Web admin console (Sophos Central) the mails rejected by those cases, unfortunately this is not available at the moment. Could you include this in the roadmap? This will be helpful for us and also could be for other costumers. Thanks.

In Email Gateway - Message Detail, the only option I see for phishing email is to Add to blocklist. But that just adds the IP address to the blocklist.

There should be a button that says to use this email to help train your spam/phish detection algorithms. This message was clearly a social engineering extortion attempt, but didn't get quarantined. It would be nice to have a button that says "Your algorithm needs to block messages like this".

Extend the duration of logs from 30 days to 180 days as a minimum.

A month is not long enough for ongoing troubleshooting cases...

Request to have feature added to Sophos Email Appliance and any other Sophos products which will inject the results of the SPF check into the email header. This will allow the email recipient to view the results of the SPF check (pass/fail/neutral/none) by looking at the message properties. Microsoft Office 365 and Cisco has this capability already by default in their email gateway products.

Feature that will allow us to manage sort and filter mailboxes by bulk.

For Central users who are running a hybrid setup for their mailboxes (Some in Office365 and some in Gsuite), they need to have the option to select the pre-canned outbound origin for a single domain. At the moment, to achieve this setup, you will need to use a "Custom Gateway" for your domain and manually add Gsuite and Office 365's public IP ranges which is problematic to maintain if any changes occurs.

Ability to filter out spam emails in the logs that was detected as "Suspected Spam" if set to tag subject line. Currently, if an admin chooses to "Tag" suspected spams, you will not have visibility in the console to see which ones are being detected as suspected spam.

Increase the number of days email stays in Quarantined Messages. Right now it is 14 days, we would like to increase it to 30 days.

Email Gateway - Domaineinstellungen/Status
Die FQDN mail.wbv-eiderstedt.de kann scheinbar nicht bei euch aufgelöst werden. Der Log besagt eine korrekte Zustellung von Mails, die jedoch nie das Kundennetz erreichen.
Nach Festlegung der festen IP 87.139.115.64 ist das Relay funktional.

Reflexion should show the status of whether an email was encrypted or note and the reason for its encryption.

It would be helpful if there was a type of "soft block" that we could use on certain domains like gmail.com, earthlink.com, yahoo.com, or aol.com just name a few.

What I'm suggesting would be similar to a receive quarantine. If an email was received from a sender at one of these domains it would go into a holding a queue and a confirmation request would be sent to the sender. After the sender confirms sending the email, it would be released to the end user. This should help prevent mass phish and SMTP spoof attempts.

Allow superadmin accounts to edit an end user's block list on a global basis and not as per individual. Doing so will allow admins to unblock addresses that were accidentally blocked.
Bring together the block list from all domain users into the enterprise list.

Customer complained that there were no warning that deleting a User in Sophos Central "People" list will delete the mailbox for the user as well. They would like a warning so atleast they know the impact of such step. #9072469

The date selection in quarantined email keeps reverting back to 'Today' If I look at emails from a previous day, and, for instance, add an IP to the block list (or do anything else) once that task is done, the display of quarantined mails reverts back, not to where I was working, but to the current day and then you have to then re-select dates. It would be better if one was taken back to the date you wanted to be working on

Add Distribution List to Security Policy (instead of just user and user group).