Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Improved device list views

    Including the ability to add/remove columns and filter results.

    For example, add a column about tamper protection, and have the ability to filter for only devices with it disabled. Or to add a column about Intercept X software version and filter for certain version(s).

    This would apply to Endpoint and Server views.

    We intend to make this functionality available via APIs as well.

    496 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    95 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →

    The APIs are now available, please see https://developer.sophos.com/ for more details.

    For example, retrieving tamper protection status is available this way: https://developer.sophos.com/docs/endpoint-and-server/1/routes/endpoints/%7BendpointId%7D/tamper-protection/get

    I appreciate many people simply want the admin UI to offer the functionality rather than just APIs, and we will update it to allow column addition/removal and filtering on any column. However, this is likely to not be until around August as the development team have been reassigned to assist another project for a few months. Sorry for the wait, I would very much like this to be available earlier.

    I’ll leave this item open and “started” until the admin UI changes are released, but please do be aware of the API option in the meantime.

  2. Alert user reboot required after software update is pending

    I can see a lot of computers have "Reboot required after software update" alert in the Sophos Central. However, users never get any notifications about the required restart.

    Can you modify the user interface such that user will get notification about the restart every 30 minutes, then every 20 minutes, then every 10 minutes and then every 5 minutes?

    246 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    27 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →

    We are looking at changes to help avoid large numbers of reboot related alerts. This work is not yet planned, so I can’t provide a date, but the proposed implementation would be as below.

    For urgent reboots, e.g. to complete removal of a competitor product being replaced, users will see a notification immediately.

    For non-urgent reboots (i.e. where protection is maintained), users will not see a reboot for the first 2 weeks (typically they will reboot in this time anyway, e.g. for windows updates).

    If not rebooted for 2 weeks they will see a notification they can dismiss.

    The reboot notification be persistent on an endpoint; it will require acknowledgement by the user to clear it. We would expect to have a registry key to be able to prevent this behaviour for systems like shop tills, advertising displays and so on.

    If a further week goes by without a reboot…

  3. Uninstall and Repair Endpoints via Sophos Central

    The uninstall and repair options via console would make it easier to manage a large number of machines, mainly because sometimes it is difficult to get access to some of them.

    224 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  17 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Suggestions for improvement for Peripheral control policy

    Suggestions for improvement for Peripheral control policy:
    - option to export the "Peripheral Exemptions" list to csv
    - filter options in "Peripheral Exemptions"
    - sorting options in "Peripheral Exemptions"
    - sorting options in "Add Peripheral Exemptions"
    - add filter type Computer to "Add Peripheral Exemptions"
    - allow the user to resize the window, so that I can read the complete field
    - allow to filter by time for a date and time range

    92 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  5. Status Bar When Running Scan

    When running scans with Sophos Central, there is not status bar that shows the progress of the scans. This feature would be extremely useful when allocating time and resources to specific issues. This feature existed in the Sophos On-Prem solution, so I don't think it should be hard to do.

    72 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Email alert when a computer auto-isolates itself.

    An alert should be sent when a computer auto isolates itself due to "red health".

    57 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    8 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Separate Proxies & Translators category

    The categories Proxies and Translators should be separate. Many customers would like to block sites categorized as proxies but allow sites categorized as translators. They should be configured like this by default.

    Ex. translate.google.com is blocked by default.

    52 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Notes for Peripheral exemptions

    add a notes field to peripheral exemptions so I can note why im creating the exemption.

    49 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    9 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. Central/Cloud Exclusions - Export-Import

    Please add the functionality to export personalized exclusions for servers and users/clients and then the ability to re-import them on a different server (group) or users.
    In order to facilitate batch export-import of long exclusion lists.

    47 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    17 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Report of users who ONLY have Base Policy

    This report would tell us who needs to be put in groups to have custom policies applied. If new users are added and someone forgets to add them to a group, then after the fact there's no way of knowing without looking at every user's policies.

    46 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Okta MFA/SSO integration into Sophos

    Request to have Okta integrated as an option for MFA / Single Sign-On, since that is what our organization uses.
    See this as a feature request and a High Priority

    44 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  12. Sophos Central Audit Logs

    The Audit logs are lacking in detail and visibility, specifically:


    1. When moving devices/computers into groups - the audit logs only show that a change was made to the group itself, not which devices/machines were affected.


    2. When a change in product assignment is done (e.g. we remove Device Encryption as an installed product on a device/machine or a group of devices/machines) the audit logs do not show which devices/machines were affected.


    3. When changes are made to a Sophos Central policy, what were the actual changes made within the policy.


    44 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  13. Quarantine and PUA cleanup not working the way I want.

    Today Sophos automatically cleaned up a PUA that I did not want cleaned up. I had no way to go into quarantine and restore the file. I would like to be able to do that preferably from Central. I would also like to be able to not automatically clean up PUAs but continue to automatically clean up malware. There is no distinction in the settings.

    42 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Scan all Endpoints from Sophos Cloud

    I think it would be a good idea if you could bulk select protected devices and start and AV scan from the console, we had a suspect email come through and wanted to scan all computers just to be safe, the only way to do this is by creating a policy and applying it to all computers.

    41 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. Customized Browser based alerts

    Please, allow to set custom messages for the warning or blocking of file downloads or URL's as regulated in Web Control for Sophos Central customers? Similar to what the XG firewalls are allowing.

    Thank you

    Larry Goncea
    Larry@domain-group.com
    484.256.4373

    40 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. MAC Address

    Would like to see the MAC Address listed on the Devices tab as well as to be able to export to a CSV file. This would be extremely helpful to those of us managing networks of 4000+ devices. I believe this information must be captured in the Sophos servers so I can't imagine it would be that hard to include in the Device information.

    39 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  17. Central endpoint - enforce proxy route via wpad for updates

    Central endpoint update configuration will currently read a wpad file and see proxy settings, however if there is more than one route it will take the most direct one with no facility to force the traffic via specific routes / proxies, see sanitized log output below.

    The system sees the proxy settings from the wpad but then still goes direct without the proxy as that is most direct route, we need to be able to set the route for this update traffic.

    =================================
    [ 1760] INFO WindowsProxyDiscoveryWrapper::GetDefaultProxyConfiguration WinHttp default proxy not set
    [ 3456] INFO WindowsProxyDiscoveryWrapper::GetProxyForUrl WinHttp discovered proxies "PROXYFQDN:3128" …

    38 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. Website Category Lookup Tool

    There really should be a URL Website Category tool built into the Web Protection page since Sophos Categories are not easily recognized for particular sites that we are looking to whitelist.

    36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. Serial number import in device control

    An import function (for eg via csv-file) for serial numbers/device IDs of USB-devices would be very helpful in device control. Lots of SEC-customers with numerous allowed/blocked devices need to plug them all in in order to block /allow them if they migrate to Central.

    36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Control Update Cache through policy

    Would like the ability to specify what update caches a particular group of machines can use through the update policies. The current method would not work in our network environment, with our remote sites, as geographically distant locations may be forced to update from locales that are neighbours in subnets.

    36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
← Previous 1 3 4 5 52 53
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.