Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Improved device list views

    Including the ability to add/remove columns and filter results.

    For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

    This would apply to Endpoint and Server views.

    We intend to make this functionality available via APIs as well.

    375 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  71 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Need randomization schedule for Schedule Scans

    In a previous Antivirus product, we had the ability to turn on a 4 hour window where the system perform a randomized scan of a particular server.

    Currently, Sophos Central can not provide the ability to perform a randomized schedule. Please consider this. In our virtual environment, I have currently set up 7 policies to split my servers into. However, each server within the policy STILL will start its scan at the same time as others with the same policy.

    A randomization option is needed to spread the IOPS load on our SAN.

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Scan Option for Archive Filetypes - Threat Protection Policy option

    There needs to be an option to enable/disable,if archives were are scanned in Real-time scans.
    This option should be seperated by the kind of archive.
    Right now it is not possible to scan tgz-files.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Push agent via Update Cache / Message Relay

    Create the possibility to push an agent wihout having to download and install it. Probably could be realized by expanding update cache and/or message relay servers with agent push possibility.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add "Details" link in macOS events

    Please add a link to view event details for macOS machines. This feature exists for Windows machines, but not macOS.

    When responding to alerts in Sophos Central, the first thing I do is gather as much information as possible from the alert itself. Whether the endpoint is Windows or macOS, I need to be able to view details such as the file hash, raw detection data, file publisher, etc. in order to properly triage the alert.

    After reviewing an alert, I go directly to the events tab of the device in question. On a Windows machine I am able to…

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Remove Entrys from detected Exploit List

    The List could be too long, so the ability to remove some entrys would be great

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. tamper protection status report

    I would like a report to identify any Server or Workstation that has tamper protection disabled.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. MAC Address

    Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

    32 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    36 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Add "Exploit Mitigation" as a policy exclusion type

    Brief: Currently there are only 7/9 Exclusion Types (compared to the 9 Exclusion Types in Global Settings/ Global Exclusions) available when adding an exclusion to a threat protection policy. We need the ability to create "Exploit Mitigation" exclusions at a threat policy level, not just as a global exclusion.

    Discussion: In an enterprise environment with many users filling a variety of job requirements, the inability to create granular Exploit Mitigation exclusions makes for a cumbersome exclusion process. Yes, this option is available in Global Exclusions, however we may only want to exclude a certain Exploit Mitigation (i.e. Lockdown exploit) from…

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Email Gateway - Delivery Status

    The delivery status shows either "Delivery successful" or "Delivery failed" but it also shows "Delivery successful" if just one recipient got the mail successful.
    For example: if just one of five recipient gets the mail and it fails on four of them, it will show "Delivery successful". Maybe there should be a status like "Delivery partially successful" for those cases.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  11. Automated Report Recipients

    While creating an automated report as Admin, Only the report creator can able to receive the report. Multiple recipients cannot be added to the list. My suggestion is to configure multiple recipients to send the report.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  12. Disable Tamper Protection For A Selection Of Clients

    Allow admins to disable TP on a collection or group of PCs, rather than globally disabling TP or going into each device, one by one.

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Sophos Cloud Licence expired notifications

    Hi All,

    Are we able to tidy up the licence renewals process for customers?

    Customers are unhappy with the way licence renewals are processed and are finding the notifications around this to be quite confusing, please see the following feedback from a customer below:

    "Thanks for keeping on at Sophos about this, it's just a bit alarmist and
    doesn't really paint Sophos in the best light. It suggests that at a
    minimal they don't know what licenses you have and at a worst it feels like
    scare tactics to dupe the unwary into paying for their licenses over again!
    Especially…

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Need way to export device version information.

    In light of the windows update issue and the need to make sure clients are at a correct version, there needs to be a way to export a list of devices and endpoint version numbers. Having to click on each individual computer to see that information is ok for a customer with 20 devices but unfeasible for a customer with hundreds of devices.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  15. Users have no idea of missing emails quarantined due to attachment file type

    Hi, please consider this simple suggestion.

    Ability to include quarantined messages by reason "Attachment file type" in the quarantine summary but without the "release" option to keep them safe from themselves.

    Some messages that are not flagged as spam/bulk with attachments get flagged and sent to quarantine due to potential threats, but no one other than admins can see them. Unless you have a dedicated resource monitoring this quarantined list, users will never know about these messages.

    Not asking to open potential security holes here, but if the users could see they got messages that were deemed dangerous because the…

    29 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  16. Event Log Report TO FIND System with Tamper PROTECTION Disabled

    Need Event Log Report TO FIND System with Tamper PROTECTION Disabled
    FIND System with Tamper PROTECTION Disabled

    We have multiple Admins on Central and Sometime during T/S the Tamper Protection is TURNED OFF for few systems. However if the ADMIN does not roll back its a RISK.

    Need an AUDIT LOG REPORT for Systems with Tamper protection TURNED OFF

    17 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. MFA - IP whitelist to bypass MFA

    Since MFA is enforced every login, and the time out is so low, I think you should consider implementing a way to bypass MFA if you're authenticating from a safe CIDR range. For example your IT's corporate network subnet could be white listed so the Admins dont get prompted every time we go to login, but if we're outside the office we would.

    Thanks,
    Alex

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  18. Selecting Policy Name Closes Lightbox

    When cloning a policy and selecting the name (highlighting right to left) closes the lightbox.

    Can this please be rectified as it is very frustrating.

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  19. Key word filtering

    Under the allow and block you are only allowing for IP, Domain and email.
    I suggest also adding the ability to block phrases or keywords determined by quotations

    For example: "you have won 1 bitcoin", "Click here to see my hot photos" etc

    This will then assist in blocking multiple emails that contain vulgar content in the subject/content lime instead of the user receiving them in the quarantine section.

    This would be a great way for IT staff to filter spam emails that have the same subject line or the same content. We constantly find that we receive the same…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  20. Customized Browser based alerts

    Please, allow to set custom messages for the warning or blocking of file downloads or URL's as regulated in Web Control for Sophos Central customers? Similar to what the XG firewalls are allowing.

    Thank you

    Larry Goncea
    Larry@domain-group.com
    484.256.4373

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID Test Azure
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 106 107
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.