Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Central endpoint - enforce proxy route via wpad for updates

    Central endpoint update configuration will currently read a wpad file and see proxy settings, however if there is more than one route it will take the most direct one with no facility to force the traffic via specific routes / proxies, see sanitized log output below.

    The system sees the proxy settings from the wpad but then still goes direct without the proxy as that is most direct route, we need to be able to set the route for this update traffic.

    =================================
    [ 1760] INFO WindowsProxyDiscoveryWrapper::GetDefaultProxyConfiguration WinHttp default proxy not set
    [ 3456] INFO WindowsProxyDiscoveryWrapper::GetProxyForUrl WinHttp discovered proxies "PROXYFQDN:3128" …

    38 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  2. Website Category Lookup Tool

    There really should be a URL Website Category tool built into the Web Protection page since Sophos Categories are not easily recognized for particular sites that we are looking to whitelist.

    37 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Update Cache Selection

    I work for a Sophos Partner, and have encountered some issues with the Update Cache functionality for a number of customers due to the Cache Selection algorithm only comparing the BITS of the address, and using this to find the nearest cache.

    For one customer, this results in all WAN users using the lowest bandwidth site, and effectively shutting this site down with 1200 clients updating from this site.

    One of the customers has had the EA access enabled for Message Routing, and this also enables them to assign computers to use a specific update cache. This is on a…

    37 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  4. Role customization

    Please create a feature that allows for custom security roles to be created, and/or for the existing default roles to be customized so we can better determine who receives notifications or restrict access to users.

    37 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  5. Serial number import in device control

    An import function (for eg via csv-file) for serial numbers/device IDs of USB-devices would be very helpful in device control. Lots of SEC-customers with numerous allowed/blocked devices need to plug them all in in order to block /allow them if they migrate to Central.

    36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  6. Control Update Cache through policy

    Would like the ability to specify what update caches a particular group of machines can use through the update policies. The current method would not work in our network environment, with our remote sites, as geographically distant locations may be forced to update from locales that are neighbours in subnets.

    36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  7. Alerts are not customiziable and need major upgrades.

    Clearing alerts, It would be best if I don't have to manually select all 500 alerts and acknowledge them. What would be better would be a section for me to select what categories to be alerted. I seriously don't care if a reboot is required after a software update. The computer will restart when it restarts. At this point the alerts are useless to me. Another idea would be the next time the computer scans and doesn't find a threat or issue, that the alert gets cleared. It's a lot of manual labor...

    36 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. More detailed information in logs, reports

    Hello,
    I have several items that would make Sophos Email gateway more useful.
    1. A detailed report showing what Sandstorm actually caught. From an admin's point of view just knowing something happened is not useful. If I had an idea of where a message came from and why it tripped Sandstorm, I could possibly make adjustments to protect us better in the future.
    2. A clear reason on the summary page on why a message was deleted or quarantined would be helpful. While you can usually figure it out in the message source information, that is not very time efficient.…

    35 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  9. SNMP for APs managed in Sophos Central

    Enable SNMP and post MIB/OID information for all models of AP managed under Sophos Central. SNMP would be very useful in providing information about APs to allow us to better plan deployment, monitor use, and have fewer support calls into Sophos.

    Sophos is the only AP manufacturer that doesn't have SNMP available at the AP.

    35 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Wireless  ·  Flag idea as inappropriate…  ·  Admin →
  10. Domain Controller Automatic exclusions

    Sophos,

    Can you please allow for recommended exclusions for domain controllers to be configured automatically, similar to how Sophos configures exclusions for SQL and Exchange.

    Thank you
    Aodhan

    35 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Under Review  ·  3 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Adding Peripheral Exemptions

    The Add Peripheral Exemptions table which shows detected peripherals is not user friendly, the columns do not appear to scale, which makes finding the target device more difficult to locate.
    Can the columns scale automatically?

    In addition, on the Add Peripheral Exemptions screen, when trying to locate a device you cannot sort/filter the columns by name or model which makes finding the device more difficult to locate.
    Can the ability to sort by column be added?

    35 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  12. Ability to send messages to managed machines

    From within the Sophos Cloud product, it'd be really useful to be able to post notifications to an end user machine. For example "There will be an unusually large AV update on Thursday - please allow time for this to complete"

    or

    "You can now get corporate email on your Mobile Device - go to intranet.local/BYOD for more information"

    35 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Flag idea as inappropriate…  ·  Admin →
  13. Sophos Central Enterprise: Make Heartbeat works for all Sub-Estate central deployment

    Relate to this limitation:
    https://community.sophos.com/products/sophos-central/f/general/117661/heartbeat-with-sub-estate-central-deployment/425654#425654

    In a Sophos Central Enterpise deployment with sub-estate make endpoint Heartbeat connection with XG works for all the sub-estate.

    33 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  14. Easier PUA Whitelisting

    Easier PUA Whitelisting

    We need to know quickly what programs Sophos is blocking so that we don’t waste time trouble shootings problems caused by Sophos.

    A screen listing all PUA’s being blocked that are installed on any computer on our network with Block and Allow checkboxes would be nice with current state checked - user can change by checking other box.

    Also, the current white list interface for PUA’s on Sophos Central should also have a dropdown list all PUA’s being blocked that are installed on any computer on our network.

    33 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  15. InterceptX Root Cause Analysis (RCA) cases do not generate alert email

    I have had InterceptX Root Cause Analysis (RCA) cases detected with low, medium, and high priorities -- but none of them generated an alert email.

    It is very important that they do so, because RCA cases imply that malicious code has attempted to run on an endpoint, and this requires manual investigation to ascertain the cause.

    At the moment it appears that the only way of noticing if you have a new RCA case to deal with is if you manually go Dashboard -> Endpoint Protection -> Root Cause Analysis.

    33 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Allow us to filter and select alerts!

    For the love of God, please allow us to filter and select multiple Alerts to clear on the alert screen. We may have 100s of alerts for the same thing and, after resolving it, having to select each individual alert to clear it is ridiculous. It makes the alerts in our console completely useless.

    31 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  17. Allow filtering by Windows version

    On Sophos Central, when adding computers to a computer group, add an option to filter by the windows operating system version.

    31 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  18. "Reinstall Endpoint Protection" Doesn't Do Anything

    "Reinstall Endpoint Protection" is offered as an action on the Alerts page; however it only links to the download page. There is no ability to actually reinstall endpoint protection so it is pointless offering this as an action. Functionality needs to be developed to reinstall from Central Admin, to problem endpoints. Thanks

    30 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  19. API token Renewal Via API

    Make an API call capable of renewing the current API key to prevent API token expiration when it is being used for continuous log collection.

    We manage a large number of Sophos Central accounts and the process of renewing tokens could be greatly simplified if we did not have to log in to each account via the partner portal in order to renew keys as they come up for expiration.

    30 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Ability to export and import Global Exclusion

    When we have new MSP client, we have to add Global Exclusion every time. We need a way to export global exclusion from exiting MSP client and import it to new MSP client.

    30 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.