Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Improved device list views

    Including the ability to add/remove columns and filter results.

    For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

    This would apply to Endpoint and Server views.

    We intend to make this functionality available via APIs as well.

    388 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  71 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. API

    as an Sophos System-Partner we work and customize with an Documentation-Software, called "Docusnap". Our ideas going to import some informations into the docu-solution for using in Recovery-, Rescue- and Restore-plans. But for devlop we need some defined WEB-API's. It would be nice and very helpfull having read only access on some details e.g. product summary, versions, installed on, last state and any more. What's your suggestions, any chance to implemente it next time?

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  3. SNMP on XG-Firewalls

    Based on current generation from XG-Firewalls. Missed some SNMPv2 standard OID's for:
    ipAddrTable: 1.3.6.1.2.1.4.20
    ipRouteTable: 1.3.6.1.2.1.4.21

    Normally this values an standard all over the world on SNMP-Devices, still in Sophos-SG-generation. Generally it's needed by automated creation of routing-plans and more by software solutions.

    In the Moment the SNMP-Interface is nice, but not so usefull for production environment's. Secured OID's can be saved by implementing SNMPv3, but this alos not an available option on XG-firewall at the moment.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  4. Need randomization schedule for Schedule Scans

    In a previous Antivirus product, we had the ability to turn on a 4 hour window where the system perform a randomized scan of a particular server.

    Currently, Sophos Central can not provide the ability to perform a randomized schedule. Please consider this. In our virtual environment, I have currently set up 7 policies to split my servers into. However, each server within the policy STILL will start its scan at the same time as others with the same policy.

    A randomization option is needed to spread the IOPS load on our SAN.

    18 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Push agent via Update Cache / Message Relay

    Create the possibility to push an agent wihout having to download and install it. Probably could be realized by expanding update cache and/or message relay servers with agent push possibility.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Global Exclusion for Endpoint and Server separated

    Global Exclusion should be available for Endpoint and for Server. Not one for all as EP and Server exclusions are very different.

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  User management  ·  Flag idea as inappropriate…  ·  Admin →
  7. Choose which events to receive via email (not only alerts)

    Alerts can be received via email. Sophos only sets these events as alerts, which are not automatically resolved by Sophos.

    But some events may be crucial, such as:
    - Someone tries again and again to open the same blocked websites
    - A Virus/Ransom Ware was blocked by Sophos

    For now you have to look into the Events Report in the Admin Center of every single customer to get these information,
    which is quite time-consuming, especially if you have a lot of customers.

    A Feature that allows you to choose by yourself, which events you want to receive via email, would…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  8. tamper protection status report

    I would like a report to identify any Server or Workstation that has tamper protection disabled.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Scan Option for Archive Filetypes - Threat Protection Policy option

    There needs to be an option to enable/disable,if archives were are scanned in Real-time scans.
    This option should be seperated by the kind of archive.
    Right now it is not possible to scan tgz-files.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. 9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  11. Add "Details" link in macOS events

    Please add a link to view event details for macOS machines. This feature exists for Windows machines, but not macOS.

    When responding to alerts in Sophos Central, the first thing I do is gather as much information as possible from the alert itself. Whether the endpoint is Windows or macOS, I need to be able to view details such as the file hash, raw detection data, file publisher, etc. in order to properly triage the alert.

    After reviewing an alert, I go directly to the events tab of the device in question. On a Windows machine I am able to…

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Separate licensing for Linux Endpoints

    Estate Licensing for Mixed Windows/Linux only makes "Cents" for Sophos, Does NOT make "Sense" for customers. Effectively Sophos and MSP's have to charge more for a product that gets no or limited additional features from the Standard protection. When selling to clients whom have both Linux and windows servers it is kind of hard tell them. Get advanced its great on your windows boxes. Oh, and you get to pay more for your Linux servers and get no extra benefit.

    Linux products really should have there own SKU. And be priced separately. I see some posts for Linux workstations to…

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Improved Central Endpoint release notes

    The release notes located at https://www.sophos.com/en-us/support/endpoint-release-notes.aspx do not include every update made to the Sophos client. We sometimes receive emails stating "Sophos has released a product update" but determining which affected operating system is difficult since the current release notes page doesn't always show an update.

    Adding a page that is updated consistently every time an update is made available is a feature our organization would get value from.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Email Gateway - Delivery Status

    The delivery status shows either "Delivery successful" or "Delivery failed" but it also shows "Delivery successful" if just one recipient got the mail successful.
    For example: if just one of five recipient gets the mail and it fails on four of them, it will show "Delivery successful". Maybe there should be a status like "Delivery partially successful" for those cases.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  15. Log retention needs to extend 30 days

    Extend the duration of logs from 30 days to 180 days as a minimum.

    A month is not long enough for ongoing troubleshooting cases...

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  16. Decrypting Devices

    It would be great if I can decrypt a laptop from the portal. Instead of going to the laptop and turning bit locker off manually to start the decryption.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Device Encryption  ·  Flag idea as inappropriate…  ·  Admin →
  17. Automated Report Recipients

    While creating an automated report as Admin, Only the report creator can able to receive the report. Multiple recipients cannot be added to the list. My suggestion is to configure multiple recipients to send the report.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  18. Remotely disable endpoint's tamper protection without physically disabling on endpoint

    If the admin and endpoint are in different locations, how can the endpoint's Sophos be disabled for the 4 hours troubleshooting without physically entering the tamper password on the endpoint?

    It would be much better if the remote administrator could login to Sophos Central and remotely disable the Endpoint's Sophos for a specific period of time without the need to physically logon the endpoint's Sophos.

    Otherwise the admin would need to disclose the tamper protection password to the person using the endpoint. Not a good idea. A new tamper password can be generated afterwards but that's not an efficient process.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Remove Entrys from detected Exploit List

    The List could be too long, so the ability to remove some entrys would be great

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. MAC Address

    Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

    35 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    36 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 111 112
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.