On the Sophos email Self Service Portal there's no way to select and act on multiple emails. you have to work on them one at a time. I have users that end up with dozens of emails in their quarantine and would like to release or block them by selecting several at a time. you should add a check box to the left for multiple selections.

Azure sync right now syncs the entire azure active directory. How is this usable for anyone? It gets service accounts. It gets a ton of guest users if you share documents externally from onedrive, or teams. People who dont even work at my company get synced to the sophos portal. With BYOD I would want automated emails to go out to new users so they can self service, but thats unusable with Azure Sync.

Including the ability to add/remove columns and filter results.

For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

This would apply to Endpoint and Server views.

We intend to make this functionality available via APIs as well.

I think is a good idea to have information about the firewall's resources under the Sophos Central.

If you look at Sophos Central > Firewall Management > MANAGE FIREWALLS > Firewalls, you can see that we've informations about NAME | ALERTS | SYNC & MANAGEMENT | SYNCHRONIZED SECURITY | VERSION | IP ADDRESS | MODEL | SERIAL NUMBER

I ask to insert three more columns for informations about the CPU, MEMORY and DISK which shows the load of each one of these resources.

Thank you.

Dear Sophos,

Would like to see a 'Search Box' feature & an 'Export to PDF/XLS' feature under the Website Management section.

Regards

Sophos Enterprise Dashboard - Phish Threat Reporting across all sub-estates.

Am looking at if we will have the ability to use an API or even better within the UX of EDB that will allow admin to pull active campaign report data from phish threat campaign that are running across multiple sub-estates.

Location Awareness Policy
Ability to create different policy for different location such as in office and out of office such as home

Note: Currently you can only block applications. If you add a SHA-256 hash for other items, it has no effect.

When you going to block file has for other file type. Ransomware file doesnt target exe only!!!! Speed up or left out

Enable granular alert emails for Sophos modules, such as CryptoGuard or other modules, for immediate review/fast response.
As it stands now it is not possible to have distribution lists configured for specific alert types.

Frequently, we need to extract the email data for analysis purpose and provide custom report to the customer.

Please add "Export to CSV" feature for the following:

1. Sophos Central > Email Gateway > Logs & Reports > Message History


2. Sophos Central > Email Gateway > Logs & Reports > Message Summary


3. Sophos Central > Email Gateway > Quarantined Messages


4. Sophos Central > Email Gateway > Mailboxes

It would be great it the ability to search for wesites on the site were there and also the ability to export websites and the settings to an excel document was available

In Sophos Central under Devices, when you select a specific Mac PC, under Agent Summary it displays 'Serial Number XXXXXXXXXXXX'.

This is very useful - please could we have this for Windows devices too?

Hi,

Please could you add .iso and .img file types to the default sophos rule for blocking file types as per the Microsoft recommendation - https://www.zdnet.com/article/microsoft-warns-of-multiple-malspam-campaigns-carrying-malicious-disk-image-files/
I've tried adding the file types in a seperate rule, but it doesn't work. I logged a call with Sophos support #9824278 and they have confirmed that it doesn't work and that my best bet is to raise a feature request to have those file types added to the default rule.

Many thanks,
Paul

Relate to this limitation:
https://community.sophos.com/products/sophos-central/f/general/117661/heartbeat-with-sub-estate-central-deployment/425654#425654

In a Sophos Central Enterpise deployment with sub-estate make endpoint Heartbeat connection with XG works for all the sub-estate.

For server and endpoint protection. We need the ability to delegate management of resources based on site location. So we have a remote site with servers and endpoints managed by a network engineer at that site. We want him to be able to manage only those systems while including them in our overall cloud portal. We need to be able to restrict his access to only those systems.

Currently: Live Response (Beta) requires MFA for use.

SSO MFA is not accounted for, which requires a logout of federated logon and login with Sophos managed admin to use feature.

Requesting Live Response work for federated logins that have MFA.

It would be good if Sophos Email Gateway could have geoblocking supported rather than just an IP list/range.

I would expect a lot of businesses could easily exclude certain country ranges from email where you would not have business from.

Dear Sophos developers and team Please appreciate the implementation of a new function in the administration roles. Currently in the Additional Settings section for Sophos Central Admin we have the option to allow for example the Helpdesk role which can Add, edit and remove policies, it would be possible to modify this and only edit the policies but not add or remove.

Thank you very much,

Darell Pérez Bango
Technical Consultant / SOC
Email: darell@aiuken.com
Tel: +34 910 49 00 80
Fax: +34 911 23 88 13
PGP Key ID: 0x6DAC1D42

Are there currently any third party tools that are recommended to create meaningful reports from the partner portal?