This is a feature request for Base policy amendments to be logged in more detail in the audit logs - Currently when any particular application base policy is edited the audit logs do not show in detail which specific base policy was edited, nor what specific changes were made to this policy. I feel this level of detail is important for change control and accountability.

When malware gets detected, there is a alert generated in central with "manual cleanup required", but often Sophos-AV cleans up the malware on its own. In this case no additional alert gets created.
Thats just not efficient... we have to try and cleanup something that isn't there anymore at least 3-4 times a week and burn time and effort for nothing.
Possible solution: An alert has to be generated, if an automatic cleanup is successful. Then we would see: "Malware detected" and shortly after that "Automatic cleanup successful".

add ability to block .vhd and .vhdx files with web control policy.

https://www.bleepingcomputer.com/news/security/virtual-disk-attachments-can-bypass-gmail-and-chrome-security/

The details stirred the interest of security researchers who used real malware encapsulated in a VHD file to test the detection rate of multiple antivirus engines. Products that normally detected the malware samples became blind to them.

If we're unable to create custom roles within a sub-estate we need the excel file upload option to create enterprise admins in the Sophos Central Enterprise Console as the manual process is too time consuming for onboarding a whole department that's adopting this solution.

Threat Analysis Center Dashboard needs to show all (10+ lines) cases and include "In progress" as well as New cases. Why does Dashboard default to show only 4 cases?

We hire disabled veterans to work on our customers Sophos portal. All of our visually impaired veterans cannot use your interface, The contrast ratio makes it impossible for them to read. The white background with a very faded grey typestyle makes the contrast ratio unusable. What ever happened to plain black text on a white screen with colors like green, yellow, and red to denote status?

Hi, it would be really useful to be able to add notes into the policies, so tracking of why changes are made can be recorded in the application.

In Central, really need to be able to get into the "Configure email alerts" section even though it is being managed by a partner/reseller. At the very least, give that ability to a login that has Super Admin abilities.
Thank you!

The MFA dialog window needs proper focus. It is the only input dialog on the page, so we shouldn't have to use a mouse to select the input box to put in our PIN code: UI 101

Hi,

I'm doing the video-tutorial and i miss a lot the subtitles

No need that are in diferents lenguages. With only the english subtitle im happy

PD: Sometimes is hard to understand what is saying (things like CSV are hard to understand)

For partner managed alerts we really need a way to be able to exclude some customer accounts from this. However, I'd like to make the default for new customers created to be partner managed alerts but then have a way to go in a exclude those who may want co-management of their own alerts.

I was informed by support that changing a device's name is not possible in Sophos Central.
Only way to achieve it is by uninstalling Sophos on the endpoint and reinstalling the product while the device has the desired name.

I would like the ability to change the device name directly from central.
Seems like a pretty basic feature to me.

It would be really nice to be able to have computer groups more dynamic. Lets say I want to have 1 policy for laptops and 1 for desktops. I would like to be able to use ie WMI queries instead of just having static groups.

Can you make a dark mode for this site?

Currently, you can only assign 1 Global Template per Sub-Estate. Would like to be able to create multiple Global Template (to separate different areas of polices - Web Policies vs Global Exceptions). Some settings we want separated out for manageability and so they are not assigned to all the same Sub-Estates. If policies do overlap, may need to have a way to set precedence order of the policies (like Windows Group Policies do).

Could you auto-focus the cursor to the security code field (after login, when entering a code from the app). I constantly find that i'm entering the code only to find the cursor isn't in the one data field on the page, and have to click and then re-type. Thanks!

Please add Duo MFA integration for Sophos Central Admin. Both for the MSP Sophos Partner Central Admin, and for individual customers. Having IT technicians needing to log on to Sophos Central with current MFA it's a pain as you'd have to have so many individual rotating codes for each technician. With Duo MFA it would be a push authentication to a choice of technician phones.

Since MFA is enforced every login, and the time out is so low, I think you should consider implementing a way to bypass MFA if you're authenticating from a safe CIDR range. For example your IT's corporate network subnet could be white listed so the Admins dont get prompted every time we go to login, but if we're outside the office we would.

Thanks,
Alex