Including the ability to add/remove columns and filter results.

For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

This would apply to Endpoint and Server views.

We intend to make this functionality available via APIs as well.

Relate to this limitation:
https://community.sophos.com/products/sophos-central/f/general/117661/heartbeat-with-sub-estate-central-deployment/425654#425654

In a Sophos Central Enterpise deployment with sub-estate make endpoint Heartbeat connection with XG works for all the sub-estate.

In Sophos Central under Devices, when you select a specific Mac PC, under Agent Summary it displays 'Serial Number XXXXXXXXXXXX'.

This is very useful - please could we have this for Windows devices too?

You used to be able to rename firewalls in Sophos Central. That seems to have disappeared. Please return this feature. Trying to identify a firewall by IP address or serial is silly. We have DNS for a reason: people don't remember IP addresses.

Currently when we rename a computer, we have to re-register it with the console to get the name to update in the console, Can we get it added to the name is auto-refreshed (say daily) and will update in the console if the name on the computer itself changes. Many other antivirus software will.

When adding a new user manually, in the overview area for example, there should be an option (tick-box?) for adding him a mailbox within Central Email automatically.
Of course then the "Email adress" field, in the wizard is mandatory.

Based on current generation from XG-Firewalls. Missed some SNMPv2 standard OID's for:
ipAddrTable: 1.3.6.1.2.1.4.20
ipRouteTable: 1.3.6.1.2.1.4.21

Normally this values an standard all over the world on SNMP-Devices, still in Sophos-SG-generation. Generally it's needed by automated creation of routing-plans and more by software solutions.

In the Moment the SNMP-Interface is nice, but not so usefull for production environment's. Secured OID's can be saved by implementing SNMPv3, but this alos not an available option on XG-firewall at the moment.

Hello,

I would like to have support for integrating Microsoft ADFS (SSO) with Sophos Central.
Would allow easier management / provisioning of admin-users as well as allowing admins to login using their AD-credentials and that they don't need to have a separate Sophos Central account.

Users who quit are disabled in the AD and their Sophos Central access will be cut as well instead of having to disabling them manually among other things.

Best Regards -Karl, Sweden

as an Sophos System-Partner we work and customize with an Documentation-Software, called "Docusnap". Our ideas going to import some informations into the docu-solution for using in Recovery-, Rescue- and Restore-plans. But for devlop we need some defined WEB-API's. It would be nice and very helpfull having read only access on some details e.g. product summary, versions, installed on, last state and any more. What's your suggestions, any chance to implemente it next time?

In a previous Antivirus product, we had the ability to turn on a 4 hour window where the system perform a randomized scan of a particular server.

Currently, Sophos Central can not provide the ability to perform a randomized schedule. Please consider this. In our virtual environment, I have currently set up 7 policies to split my servers into. However, each server within the policy STILL will start its scan at the same time as others with the same policy.

A randomization option is needed to spread the IOPS load on our SAN.

The ability to import computers from AD would be helpful to identify devices that may not have the Sophos Central Agent installed

Can we please have the ability to permanently dismiss alerts up the top of the Sophos central window.

Having to dismiss messages like "Server 2003 support has ended" and "your trial is expiring in X days/expired" is becoming very frustrating.

Working from my laptop these alerts are taking 25% of my screen and i have to dismiss them every time I log in.

How long are we going to be reminded about 2003 support being ended?

Allow confirmed spam outbound to be quarantined and inbound to be deleted by having separate settings for inbound and outbound.
Allow outbound filtering to be turned off.
Or get better at recognizing confirmed spam. We have constant problems with false positives outbound. They're not even marketing emails. Last time they were legal documents for a court case, and Sophos decided it would delete them.

Azure sync right now syncs the entire azure active directory. How is this usable for anyone? It gets service accounts. It gets a ton of guest users if you share documents externally from onedrive, or teams. People who dont even work at my company get synced to the sophos portal. With BYOD I would want automated emails to go out to new users so they can self service, but thats unusable with Azure Sync.

Create the possibility to push an agent wihout having to download and install it. Probably could be realized by expanding update cache and/or message relay servers with agent push possibility.

A button on the console to uninstall Endpoint protection would be extremely useful. No user disruption or spending time with a script, but a simple button per device.