Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Suggest an Idea for Sophos Central...

(thinking…)

Enter your idea and we'll search to see if someone has already suggested it.

If a similar idea already exists, you can support and comment on it.

If it doesn't exist, you can post your idea so others can support it.

Enter your idea and we'll search to see if someone has already suggested it.

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Improved device list views

    Including the ability to add/remove columns and filter results.

    For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

    This would apply to Endpoint and Server views.

    We intend to make this functionality available via APIs as well.

    143 votes
    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)

      We’ll send you updates on this idea

      Started  ·  38 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    • Sophos Agent Removal Tool

      We need a tool to remotely remove Sophos agents.

      234 votes
      Sign in
      Check!
      (thinking…)
      Reset
      or sign in with
      • sso
      • facebook
      • google
        Password icon
        Signed in as (Sign out)

        We’ll send you updates on this idea

        Started  ·  55 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
      • Recover deleted items

        Sometimes emails get deleted by Email Gateway. Many times it is correct but there are times when it is not. Currently we have no way to recover a message that has been deleted. Rather than automatically dumping them, it would be helpful to allow messages to move to an admin only area to be reviewed and possibly downloaded directly from the portal, or released if it is determined that there is a need. A good example, we had an wayward block rule deleting all email from gmail.com. After finding the issue it would have been super helpful to go back…

        27 votes
        Sign in
        Check!
        (thinking…)
        Reset
        or sign in with
        • sso
        • facebook
        • google
          Password icon
          Signed in as (Sign out)

          We’ll send you updates on this idea

          1 comment  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
        • Sophos Central Wireless WPA2-Enterprise fallback RADIUS-Server

          When you use Sophos Central Wireless and create an SSID with WPA2-Enterprise authentication it is not possible to configure an fallback RADIUS-Server.
          Please allow the configuration of an fallback RADIUS-Server that is used when the primary RADIUS-Server doesn't respond.
          This would allow maintenance and failure of the RADIUS-Server without disabling enterprise WLAN.

          13 votes
          Sign in
          Check!
          (thinking…)
          Reset
          or sign in with
          • sso
          • facebook
          • google
            Password icon
            Signed in as (Sign out)

            We’ll send you updates on this idea

            0 comments  ·  Wireless  ·  Flag idea as inappropriate…  ·  Admin →
          • Offline Endpoint Installer

            Desperately need you to bring back the full offline installer. Deploying the install amongst multiple endpoints is not feasible with our bandwidth.

            183 votes
            Sign in
            Check!
            (thinking…)
            Reset
            or sign in with
            • sso
            • facebook
            • google
              Password icon
              Signed in as (Sign out)

              We’ll send you updates on this idea

              Planned  ·  58 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
            • MSI Installer for EndPoint Protection or Intune compatible deployment method

              Currently we are having to install manually as part of the enrolment.

              Intune only supports deploying MSI installers so we either need an MSI or an 'Intune compatible' method.

              122 votes
              Sign in
              Check!
              (thinking…)
              Reset
              or sign in with
              • sso
              • facebook
              • google
                Password icon
                Signed in as (Sign out)

                We’ll send you updates on this idea

                8 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →

                We intend to gradually move away from the current implementation involving a single installer executable which in turn calls a number of individual MSIs. However, this will take a long period (likely 12-24 months) to complete, owing to the number of individual MSIs involved and the complexity of some of them.

                In the meantime, please be aware that for many deployment scenarios , the article below explains how to use the existing installer. Specifically, this does allow deployment using SCCM and Active Directory (using machine startup scripts)

                https://community.sophos.com/kb/en-us/120611

                I will leave this as “planned”, though please do note it is not imminent.

              • Users have no idea of missing emails quarantined due to attachment file type

                Hi, please consider this simple suggestion.

                Ability to include quarantined messages by reason "Attachment file type" in the quarantine summary but without the "release" option to keep them safe from themselves.

                Some messages that are not flagged as spam/bulk with attachments get flagged and sent to quarantine due to potential threats, but no one other than admins can see them. Unless you have a dedicated resource monitoring this quarantined list, users will never know about these messages.

                Not asking to open potential security holes here, but if the users could see they got messages that were deemed dangerous because the…

                10 votes
                Sign in
                Check!
                (thinking…)
                Reset
                or sign in with
                • sso
                • facebook
                • google
                  Password icon
                  Signed in as (Sign out)

                  We’ll send you updates on this idea

                  1 comment  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
                • Controlled Updates

                  Suggesting some improvements to this existing feature:

                  Endpoint Protection - Controlled Updates
                  Go to:
                  Endpoint Protection > Settings > Controlled Updates

                  You can control how your computers get product updates below. All computers still get security updates immediately to protect them against the latest threats. When product versions expire, any computers on that version will be updated to the next version automatically.

                  When a new version becomes available, you can add computers to a list called "Test computers".

                  When you are satisfied with your testing, you can click a button that says: "Update to match test computers"

                  Suggestions:

                  1) Provide…

                  8 votes
                  Sign in
                  Check!
                  (thinking…)
                  Reset
                  or sign in with
                  • sso
                  • facebook
                  • google
                    Password icon
                    Signed in as (Sign out)

                    We’ll send you updates on this idea

                    2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                  • installation and Uninstalation

                    Enable the option to install and uninstall from Sophos Central only with target IP or target computer name with user and local administrator privileges

                    4 votes
                    Sign in
                    Check!
                    (thinking…)
                    Reset
                    or sign in with
                    • sso
                    • facebook
                    • google
                      Password icon
                      Signed in as (Sign out)

                      We’ll send you updates on this idea

                      1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                    • Users/Email Sync from Office 365

                      Sync email addresses from Office 365 rather than AD. Sync from AD causes an issue if you have lots of shared Mailboxes, they need to be added/removed manually from the console. Also if you use SharePoint or Teams where users have the ability to create Office 365 groups and associated email addresses these are not added into the Sophos portal so all inbound email is bounced. Also since Sync deletes any manual entries we have to turn it off but that causes issues when we have new starters especially grad programs where 40-50 start at a time, they all needed…

                      7 votes
                      Sign in
                      Check!
                      (thinking…)
                      Reset
                      or sign in with
                      • sso
                      • facebook
                      • google
                        Password icon
                        Signed in as (Sign out)

                        We’ll send you updates on this idea

                        0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
                      • Email Alert Filter

                        Would like options to filter email alerts. Want emails for critical viruses and exclude alerts like "Sophos requires a reboot to install updates".

                        8 votes
                        Sign in
                        Check!
                        (thinking…)
                        Reset
                        or sign in with
                        • sso
                        • facebook
                        • google
                          Password icon
                          Signed in as (Sign out)

                          We’ll send you updates on this idea

                          0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                        • Tamper Protection - Reports

                          A Tamper Protection report, ability to get a spreadsheet of TP through the entire portal(all clients), E-mail alerts to inform the Partner if TP had been turned off in portal(12-24 hours).

                          Create a policy to force Tamper Protection in the portal back on after an update/reboot.

                          7 votes
                          Sign in
                          Check!
                          (thinking…)
                          Reset
                          or sign in with
                          • sso
                          • facebook
                          • google
                            Password icon
                            Signed in as (Sign out)

                            We’ll send you updates on this idea

                            0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
                          • Tamper Protection

                            1. Add a status column for Tamper Protection Enabled/Disabled in the Devices list.

                            2. Add a Enable/Disable Tamper Protection option to the Devices page. You would check as many boxes as necessary and then enable/disable tamper protection for them. This is necessary for mass reinstalls where Sophos is missing services or other.

                            3. Add a timed option for when Tamper Protection will automatically come back on. This could be a pop-up that shows after clicking disable which would then ask how many hours/days it should be disabled, or if it should be disable indefinitely. This will add administrative security as…

                            23 votes
                            Sign in
                            Check!
                            (thinking…)
                            Reset
                            or sign in with
                            • sso
                            • facebook
                            • google
                              Password icon
                              Signed in as (Sign out)

                              We’ll send you updates on this idea

                              2 comments  ·  Web Gateway  ·  Flag idea as inappropriate…  ·  Admin →
                            • Block entire domain but add exception for single address

                              We have email blocks in place for most of the major publicly free email servers to reduce spam and phishing, but occasionally we need to add an exception in place to receive emails from a customer. We have both the domain blocked, and an individual address from that domain unblocked. We have noticed that this doesn't work, but this is something we could really use.

                              3 votes
                              Sign in
                              Check!
                              (thinking…)
                              Reset
                              or sign in with
                              • sso
                              • facebook
                              • google
                                Password icon
                                Signed in as (Sign out)

                                We’ll send you updates on this idea

                                1 comment  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
                              • Data protection is off message should instead be "Data encryption is off"

                                On the Shops deskto client, on the right side it shows a message that says "Data protection is off". I called your tech support line and they told me what that means is data encryption is not enabled. Your message is alarming and incorrect, it should be changed from "Data protection is off" to "Data encryption is off" or "Device encryption is off".

                                Thanks,

                                Brent Hunter

                                2 votes
                                Sign in
                                Check!
                                (thinking…)
                                Reset
                                or sign in with
                                • sso
                                • facebook
                                • google
                                  Password icon
                                  Signed in as (Sign out)

                                  We’ll send you updates on this idea

                                  2 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
                                • Better logging in email gateway

                                  I recently ran into an issue where all emails from gmail.com were being deleted. I could not figure out what was going on. I called support and they helped me solve the issue which turned out to be a wayward rule. My issue is the logging is so obtuse in Email Gateway that you can't really tell why something was deleted. There should be a simple note on the message as to why it was deleted. Was it an advanced threat, triggered by a block rule, malware, etc. There should also be verbose logging that lets you see the message…

                                  7 votes
                                  Sign in
                                  Check!
                                  (thinking…)
                                  Reset
                                  or sign in with
                                  • sso
                                  • facebook
                                  • google
                                    Password icon
                                    Signed in as (Sign out)

                                    We’ll send you updates on this idea

                                    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
                                  • Support MFA in active directory sync tool

                                    It would be nice if you didn't have to disable MFA on the account the AD sync tool uses. The tool should be updated to accept MFA during setup and then be handled appropriately to avoid needing to re-authenticate during normal use.

                                    8 votes
                                    Sign in
                                    Check!
                                    (thinking…)
                                    Reset
                                    or sign in with
                                    • sso
                                    • facebook
                                    • google
                                      Password icon
                                      Signed in as (Sign out)

                                      We’ll send you updates on this idea

                                      4 comments  ·  User management  ·  Flag idea as inappropriate…  ·  Admin →
                                    • configure email alerting

                                      Currently it is not possible to granular configure the email alerting to select only certain item to be alerted. But it would be useful to enable this to happen so more than one user can get the selected alerts without admins receiving excess emails.

                                      8 votes
                                      Sign in
                                      Check!
                                      (thinking…)
                                      Reset
                                      or sign in with
                                      • sso
                                      • facebook
                                      • google
                                        Password icon
                                        Signed in as (Sign out)

                                        We’ll send you updates on this idea

                                        1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                      • Suggestions for improvement for Peripheral control policy

                                        Suggestions for improvement for Peripheral control policy:
                                        - option to export the "Peripheral Exemptions" list to csv
                                        - filter options in "Peripheral Exemptions"
                                        - sorting options in "Peripheral Exemptions"
                                        - sorting options in "Add Peripheral Exemptions"
                                        - add filter type Computer to "Add Peripheral Exemptions"
                                        - allow the user to resize the window, so that I can read the complete field
                                        - allow to filter by time for a date and time range

                                        21 votes
                                        Sign in
                                        Check!
                                        (thinking…)
                                        Reset
                                        or sign in with
                                        • sso
                                        • facebook
                                        • google
                                          Password icon
                                          Signed in as (Sign out)

                                          We’ll send you updates on this idea

                                          2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
                                        • Email alerts for Threat Cases

                                          Provide Email Alerting for Threat Cases, as you do with Events.

                                          6 votes
                                          Sign in
                                          Check!
                                          (thinking…)
                                          Reset
                                          or sign in with
                                          • sso
                                          • facebook
                                          • google
                                            Password icon
                                            Signed in as (Sign out)

                                            We’ll send you updates on this idea

                                            2 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
                                          ← Previous 1 3 4 5 83 84
                                          • Don't see your idea?

                                          Feedback and Knowledge Base

                                          icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.