Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. base policy change audit logging

    This is a feature request for Base policy amendments to be logged in more detail in the audit logs - Currently when any particular application base policy is edited the audit logs do not show in detail which specific base policy was edited, nor what specific changes were made to this policy. I feel this level of detail is important for change control and accountability.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  2. Fehler Mail-Zustellung

    Email Gateway - Domaineinstellungen/Status
    Die FQDN mail.wbv-eiderstedt.de kann scheinbar nicht bei euch aufgelöst werden. Der Log besagt eine korrekte Zustellung von Mails, die jedoch nie das Kundennetz erreichen.
    Nach Festlegung der festen IP 87.139.115.64 ist das Relay funktional.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  3. Include PhishPoint attacks in Phish Threat Module

    Please include phishpoint type attacks in training for Phish Threat. Attack that sends a OneDrive file share link to users in order to harvest their credentials.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Phish Threat  ·  Flag idea as inappropriate…  ·  Admin →
  4. Integrate eSIM support

    Hey Sophos, could you please integrate eSIM Support for the sophos mobile section in central. At the moment it is not possible to see the eSIM phone number of iPhones.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Mobile Control  ·  Flag idea as inappropriate…  ·  Admin →
  5. Add alert for automatic malware cleanup if successful

    When malware gets detected, there is a alert generated in central with "manual cleanup required", but often Sophos-AV cleans up the malware on its own. In this case no additional alert gets created.
    Thats just not efficient... we have to try and cleanup something that isn't there anymore at least 3-4 times a week and burn time and effort for nothing.
    Possible solution: An alert has to be generated, if an automatic cleanup is successful. Then we would see: "Malware detected" and shortly after that "Automatic cleanup successful".

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  6. Azure VMs - Automatically remove devices that are destroyed.

    We have issues where Azure VMs are created for a short period of time and then automatically destroyed. This causes us issues with multiple entries of the same devices listing and alerting in Sophos. Suggestion is to have these automatically removed from Sophos Central so that no manual clearing is needed

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Ausschlüsse bei Produkt RA-Micro

    Sehr geehrte Damen und Herren,
    wir haben einen Kunden im Rchtsanwaltsbereich der das Produkt RA-Micro im Einsatz hat. Gibt es hier Erfahrungswerte über Ausschlüsse, da es beim einen oder anderen PC vorkommt, dass Winword in Kombination RA-Micro mit einen "Lockdown" blockiert wird. Geholfen hat nur der Ausschluss des gesamten RA-Micro Netzwerklaufwerkes. Danke vorab für eine Rückmeldung. Mit freundlichen Grüßen
    Gerry Vanek

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Central email advanced Sync

    Hi there

    I recently set up 2 installations with Sophos Central email gateway (Our own and one for a customer) and in both cases the AD sync tool was not sufficient. The sync tool only seems to sync users it can find in AD and adds their email addresses but it completely misses groups that are created in Office365.

    To add these mail addresses the admin needs to manually create users in Sophos Central (either one by one or using a CSV import) witch results in a lot of manual work for the admin (especially in somewhat larger company's where…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  9. .vhd and .vhdx

    add ability to block .vhd and .vhdx files with web control policy.

    https://www.bleepingcomputer.com/news/security/virtual-disk-attachments-can-bypass-gmail-and-chrome-security/

    The details stirred the interest of security researchers who used real malware encapsulated in a VHD file to test the detection rate of multiple antivirus engines. Products that normally detected the malware samples became blind to them.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  10. Reflexion Secured mail should

    Reflexion should show the status of whether an email was encrypted or note and the reason for its encryption.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  11. Batch user creation for Enterprise Admins

    If we're unable to create custom roles within a sub-estate we need the excel file upload option to create enterprise admins in the Sophos Central Enterprise Console as the manual process is too time consuming for onboarding a whole department that's adopting this solution.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  12. Soft Block & Sender Confirmation for common public email domains

    It would be helpful if there was a type of "soft block" that we could use on certain domains like gmail.com, earthlink.com, yahoo.com, or aol.com just name a few.

    What I'm suggesting would be similar to a receive quarantine. If an email was received from a sender at one of these domains it would go into a holding a queue and a confirmation request would be sent to the sender. After the sender confirms sending the email, it would be released to the end user. This should help prevent mass phish and SMTP spoof attempts.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  13. Remove Entrys from detected Exploit List

    The List could be too long, so the ability to remove some entrys would be great

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Exclusion Testing

    Hi, I would like a way to test exclusions. Specifically when you use wildcards to create a path exclusions for an application/file, have a way to enter the exclusion, then enter a set of paths to test what the exclusions catch or not.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Add "Details" link in macOS events

    Please add a link to view event details for macOS machines. This feature exists for Windows machines, but not macOS.

    When responding to alerts in Sophos Central, the first thing I do is gather as much information as possible from the alert itself. Whether the endpoint is Windows or macOS, I need to be able to view details such as the file hash, raw detection data, file publisher, etc. in order to properly triage the alert.

    After reviewing an alert, I go directly to the events tab of the device in question. On a Windows machine I am able to…

    10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Central Email changes

    Central Email:
    We just lost a customer because of a weird situation.

    the two AWS IP's that Sophos sends through, one was stuck on the client's hosting provider's "poor reputation" list - which caused 1/3 to 1/2 of their email getting stuck in a "queued for delivery" loop. I beieve that the system should detect rejections as well as delays, and route mail through the other outgoing IP that Sophos has in AWS, it would have avoided this mess entirely.

    Separately, it would be a huge benefit as well to allow multiple MX records, for redundancy on the client end…

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  17. Add "Exploit Mitigation" as a policy exclusion type

    Brief: Currently there are only 7/9 Exclusion Types (compared to the 9 Exclusion Types in Global Settings/ Global Exclusions) available when adding an exclusion to a threat protection policy. We need the ability to create "Exploit Mitigation" exclusions at a threat policy level, not just as a global exclusion.

    Discussion: In an enterprise environment with many users filling a variety of job requirements, the inability to create granular Exploit Mitigation exclusions makes for a cumbersome exclusion process. Yes, this option is available in Global Exclusions, however we may only want to exclude a certain Exploit Mitigation (i.e. Lockdown exploit) from…

    7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. block list

    Allow superadmin accounts to edit an end user's block list on a global basis and not as per individual. Doing so will allow admins to unblock addresses that were accidentally blocked.
    Bring together the block list from all domain users into the enterprise list.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  19. Threat Analysis Center Dashboard needs better view options

    Threat Analysis Center Dashboard needs to show all (10+ lines) cases and include "In progress" as well as New cases. Why does Dashboard default to show only 4 cases?

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  20. Disable Tamperprotection via API

    In order to allow for automatic & silent rollback / removal of Sophos Central Endpoint using a generic software deployment system it would be helpfull to have API access to Tamperprotection of individual clients.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 102 103
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.