Sophos Central
Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum
-
Can we please be able to view the status of our open tickets. Especially when we are having email deliverability issues??
I would suggest that we have a method of reviewing our tickets from this interface not just launching them. It is frustrating not to be able to see the progress of a ticket and to have to wait for email notifications when you are having email issues!!!
5 votes -
Import Computers from AD
The ability to import computers from AD would be helpful to identify devices that may not have the Sophos Central Agent installed
5 votes -
Decrypting Devices
It would be great if I can decrypt a laptop from the portal. Instead of going to the laptop and turning bit locker off manually to start the decryption.
5 votes -
Reports scheduling with options to select which reports to which receiver
Requesting Separate report submission.
Ex:
Events and Alerts only sending to Administrators
Malware/Application/Application Control Policy Violators or any other reports to Selected people only.So we need to have an option to select reports based on receivers.
Also Automaticallay report submission based on Daily/Weekly/Monthly5 votes -
Add "Exploit Mitigation" as a policy exclusion type
Brief: Currently there are only 7/9 Exclusion Types (compared to the 9 Exclusion Types in Global Settings/ Global Exclusions) available when adding an exclusion to a threat protection policy. We need the ability to create "Exploit Mitigation" exclusions at a threat policy level, not just as a global exclusion.
Discussion: In an enterprise environment with many users filling a variety of job requirements, the inability to create granular Exploit Mitigation exclusions makes for a cumbersome exclusion process. Yes, this option is available in Global Exclusions, however we may only want to exclude a certain Exploit Mitigation (i.e. Lockdown exploit) from…
8 votes -
block list
Allow superadmin accounts to edit an end user's block list on a global basis and not as per individual. Doing so will allow admins to unblock addresses that were accidentally blocked.
Bring together the block list from all domain users into the enterprise list.6 votes -
Event Log Report TO FIND System with Tamper PROTECTION Disabled
Need Event Log Report TO FIND System with Tamper PROTECTION Disabled
FIND System with Tamper PROTECTION DisabledWe have multiple Admins on Central and Sometime during T/S the Tamper Protection is TURNED OFF for few systems. However if the ADMIN does not roll back its a RISK.
Need an AUDIT LOG REPORT for Systems with Tamper protection TURNED OFF
21 votes -
Disable Tamper Protection For A Selection Of Clients
Allow admins to disable TP on a collection or group of PCs, rather than globally disabling TP or going into each device, one by one.
11 votes -
MFA - IP whitelist to bypass MFA
Since MFA is enforced every login, and the time out is so low, I think you should consider implementing a way to bypass MFA if you're authenticating from a safe CIDR range. For example your IT's corporate network subnet could be white listed so the Admins dont get prompted every time we go to login, but if we're outside the office we would.
Thanks,
Alex10 votes -
Inject SPF Pass Results Into Email Header
Request to have feature added to Sophos Email Appliance and any other Sophos products which will inject the results of the SPF check into the email header. This will allow the email recipient to view the results of the SPF check (pass/fail/neutral/none) by looking at the message properties. Microsoft Office 365 and Cisco has this capability already by default in their email gateway products.
7 votes -
Outgoing DKIM signing for email
Please add outgoing email DKIM signing
24 votes -
Ability to use Multi line file/dir exclusion additions
The way you have to manually add exclusions simply sucks and needs to looked at. Each item has to be added one by one!
3 votes -
Proactively scan real-time blacklists (DNSBL/RBL)
Sophos Support needs to proactively scan real-time blacklists (DNSBL/RBL) to ensure their external sending IP addresses are not included.
If a sending IP is identified as blacklisted, support needs to quickly disabled server(s) relaying mail via blacklisted IP(s) to prevent their clients from having waste hours opening support tickets notifying Sophos Support that they are receiving NDRs while trying to send mail.
4 votes -
Search functionality in Email gateway - Message history
Currently in the email gateway you can only search on one field, e.g. sender or recipient or subject. This is no good if there are lots of emails between people and you need to locate a specific email. Please can we expand the search function to be able to search on multiple fields at the same time?
4 votes -
Act more like an enterprise platform.
I could care less about the users. It is the device that Sophos Endpoint is installed on, but Sophos refuses to provide more details about the devices other than ip address and current name. With the level of access that the software has, Sophos should be able to provide an extensive hardware profile. Every device should have a list of all users that have logged into it, not just the last user. I really don't care about specific users only the activity in the event logs. It is supposed to be enterprise class software, but it behaves, from a management…
5 votes -
Users have no idea of missing emails quarantined due to attachment file type
Hi, please consider this simple suggestion.
Ability to include quarantined messages by reason "Attachment file type" in the quarantine summary but without the "release" option to keep them safe from themselves.
Some messages that are not flagged as spam/bulk with attachments get flagged and sent to quarantine due to potential threats, but no one other than admins can see them. Unless you have a dedicated resource monitoring this quarantined list, users will never know about these messages.
Not asking to open potential security holes here, but if the users could see they got messages that were deemed dangerous because the…
31 votes -
unusable intertface due to poor contrast
We hire disabled veterans to work on our customers Sophos portal. All of our visually impaired veterans cannot use your interface, The contrast ratio makes it impossible for them to read. The white background with a very faded grey typestyle makes the contrast ratio unusable. What ever happened to plain black text on a white screen with colors like green, yellow, and red to denote status?
6 votes -
Key word filtering
Under the allow and block you are only allowing for IP, Domain and email.
I suggest also adding the ability to block phrases or keywords determined by quotationsFor example: "you have won 1 bitcoin", "Click here to see my hot photos" etc
This will then assist in blocking multiple emails that contain vulgar content in the subject/content lime instead of the user receiving them in the quarantine section.
This would be a great way for IT staff to filter spam emails that have the same subject line or the same content. We constantly find that we receive the same…
10 votes -
Need way to export device version information.
In light of the windows update issue and the need to make sure clients are at a correct version, there needs to be a way to export a list of devices and endpoint version numbers. Having to click on each individual computer to see that information is ok for a customer with 20 devices but unfeasible for a customer with hundreds of devices.
15 votes -
Purge Inactive Endpoints 3+ Months from SOPHOS Central
Currently there is no way to delete or purge inactive endpoints 3+ months from SOPHOS Central. Manual deletion is the only way available to delete or purge inactive endpoints.
A feature should be add to SOPHOS Central which will allow you to purge or delete inactive endpoints without have to do each one manually.
8 votes
- Don't see your idea?