Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Improved device list views

    Including the ability to add/remove columns and filter results.

    For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

    This would apply to Endpoint and Server views.

    We intend to make this functionality available via APIs as well.

    388 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  71 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Push agent via Update Cache / Message Relay

    Create the possibility to push an agent wihout having to download and install it. Probably could be realized by expanding update cache and/or message relay servers with agent push possibility.

    14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. tamper protection status report

    I would like a report to identify any Server or Workstation that has tamper protection disabled.

    13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Scan Option for Archive Filetypes - Threat Protection Policy option

    There needs to be an option to enable/disable,if archives were are scanned in Real-time scans.
    This option should be seperated by the kind of archive.
    Right now it is not possible to scan tgz-files.

    15 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add "Details" link in macOS events

    Please add a link to view event details for macOS machines. This feature exists for Windows machines, but not macOS.

    When responding to alerts in Sophos Central, the first thing I do is gather as much information as possible from the alert itself. Whether the endpoint is Windows or macOS, I need to be able to view details such as the file hash, raw detection data, file publisher, etc. in order to properly triage the alert.

    After reviewing an alert, I go directly to the events tab of the device in question. On a Windows machine I am able to…

    12 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Improved Central Endpoint release notes

    The release notes located at https://www.sophos.com/en-us/support/endpoint-release-notes.aspx do not include every update made to the Sophos client. We sometimes receive emails stating "Sophos has released a product update" but determining which affected operating system is difficult since the current release notes page doesn't always show an update.

    Adding a page that is updated consistently every time an update is made available is a feature our organization would get value from.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Remotely disable endpoint's tamper protection without physically disabling on endpoint

    If the admin and endpoint are in different locations, how can the endpoint's Sophos be disabled for the 4 hours troubleshooting without physically entering the tamper password on the endpoint?

    It would be much better if the remote administrator could login to Sophos Central and remotely disable the Endpoint's Sophos for a specific period of time without the need to physically logon the endpoint's Sophos.

    Otherwise the admin would need to disclose the tamper protection password to the person using the endpoint. Not a good idea. A new tamper password can be generated afterwards but that's not an efficient process.

    6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Remove Entrys from detected Exploit List

    The List could be too long, so the ability to remove some entrys would be great

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. MAC Address

    Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

    35 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    36 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Sophos Cloud Licence expired notifications

    Hi All,

    Are we able to tidy up the licence renewals process for customers?

    Customers are unhappy with the way licence renewals are processed and are finding the notifications around this to be quite confusing, please see the following feedback from a customer below:

    "Thanks for keeping on at Sophos about this, it's just a bit alarmist and
    doesn't really paint Sophos in the best light. It suggests that at a
    minimal they don't know what licenses you have and at a worst it feels like
    scare tactics to dupe the unwary into paying for their licenses over again!
    Especially…

    9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Event Log Report TO FIND System with Tamper PROTECTION Disabled

    Need Event Log Report TO FIND System with Tamper PROTECTION Disabled
    FIND System with Tamper PROTECTION Disabled

    We have multiple Admins on Central and Sometime during T/S the Tamper Protection is TURNED OFF for few systems. However if the ADMIN does not roll back its a RISK.

    Need an AUDIT LOG REPORT for Systems with Tamper protection TURNED OFF

    23 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Add "Exploit Mitigation" as a policy exclusion type

    Brief: Currently there are only 7/9 Exclusion Types (compared to the 9 Exclusion Types in Global Settings/ Global Exclusions) available when adding an exclusion to a threat protection policy. We need the ability to create "Exploit Mitigation" exclusions at a threat policy level, not just as a global exclusion.

    Discussion: In an enterprise environment with many users filling a variety of job requirements, the inability to create granular Exploit Mitigation exclusions makes for a cumbersome exclusion process. Yes, this option is available in Global Exclusions, however we may only want to exclude a certain Exploit Mitigation (i.e. Lockdown exploit) from…

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Disable Tamper Protection For A Selection Of Clients

    Allow admins to disable TP on a collection or group of PCs, rather than globally disabling TP or going into each device, one by one.

    11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Ability to use Multi line file/dir exclusion additions

    The way you have to manually add exclusions simply sucks and needs to looked at. Each item has to be added one by one!

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Act more like an enterprise platform.

    I could care less about the users. It is the device that Sophos Endpoint is installed on, but Sophos refuses to provide more details about the devices other than ip address and current name. With the level of access that the software has, Sophos should be able to provide an extensive hardware profile. Every device should have a list of all users that have logged into it, not just the last user. I really don't care about specific users only the activity in the event logs. It is supposed to be enterprise class software, but it behaves, from a management…

    5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Purge Inactive Endpoints 3+ Months from SOPHOS Central

    Currently there is no way to delete or purge inactive endpoints 3+ months from SOPHOS Central. Manual deletion is the only way available to delete or purge inactive endpoints.

    A feature should be add to SOPHOS Central which will allow you to purge or delete inactive endpoints without have to do each one manually.

    8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Remember MFA

    Allow successful MFA to be remembered for 30 days. It's clumsy having to use MFA every time the portal times out.

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Customized Browser based alerts

    Please, allow to set custom messages for the warning or blocking of file downloads or URL's as regulated in Web Control for Sophos Central customers? Similar to what the XG firewalls are allowing.

    Thank you

    Larry Goncea
    Larry@domain-group.com
    484.256.4373

    37 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Automatic re-enabling of tamper protection after interval

    reminder that tamper protection is disabled or automatic re-enableing after time delay

    21 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Peripheral control exemptions - Custom Label

    Allow custom labels to be added to peripheral device exemptions for easy identification in the event that a specific exemption needs to be removed.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 42 43
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.