Can we have a BLOCK ALL web traffic feature implemented in Sophos central web control as the website management does not give the consistent results.

if there's a way to block all uncategorised websites, it'll be a start.
I am needing to use Sophos Endpoint protection for our Business Computers, we have a list of about 15 work related websites we need, there should be a way for me to Block everything with the exception of the whitelisted websites.

Your software is invasive and I can't remove it.

Please ASAP give the ability to apply Web Control policy to a Group of Computers. You do so for USERS but NOT Computer Groups. We use like 98% Mac's without a Active Directory Login so I can't effectly use users and I need the ability to differentiate between the Global Default Policy and a Policy that is a bit less restrictive. And Users is not helpful nor effective.

Greg

Online chat or a call back feature would be helpful.
Being able to ask questions about data retention and licensing is not practical to discuss in a forum

DLP Log is not workable

Ok, so if you block ads on Sophos, the agent is working really hard and CPU usage is through the roof, because normal browsing will contain thousands of events an hour that needs to be sent back to Sophos.

My workaround for this is to disable "Log web control events" in the web control policy. This will disable all events, including warnings if users are downloading risky file-types.

So a permanent fix for this, I would love for specific categories to have an additional option in the Policy page, something like: "warn/block but don't log".

Feature request: Allow adding Unique 256 Hash as exclusions prior to false positives.

Currently when we rename a computer, we have to re-register it with the console to get the name to update in the console, Can we get it added to the name is auto-refreshed (say daily) and will update in the console if the name on the computer itself changes. Many other antivirus software will.

Very Disappointed as sysadmin, there is no functionality in Sophos to configure email alerts for all threads detected.
We want email alerts for any detection regardless of if that has been cleared by Sophos automatically or not. Its an urgent business requirement.
I hope to see this happening soon.

It would be very helpful if it would be possible to go from the dasboard graphics and explanation directly to the users, computers, devices or whatever.

Example: In the Endpoint Protection Dashboard the Devices and Users Overview (Geräte und Benutzer: Übersicht) it should be possible to get to the Devices and Users directly.

Ability to add a comment field/specific name for each allowed device in device control as it was possible earlier in Sophos Enterprise Console.

The process to restore a file requires you to create a global exclusion in a way, that does not match the manual exclusion process.

Full path, SHA, or Signing Cert ? These seem like application controls not AV / PUA exclusions.

Allow for the creation of Exclusions from alerts in specific policies, (global policy should only include exclusions for things that should not be scanned, not the exclusion of a specific threat)

Need a way to disable protection on a selected endpoint from Central Admin for troubleshooting denials.

We would like the alerts to include the computer name in the subject line as SEC does. Our tenant is shared across many sites that have their own on-site ICT Technician who would respond to alerts. They want to be able to find the messages just for their site and can do that with the prefix on the computer name. These generic messages are not working for us.

For the threat protection policy: advanced settings are not visible for read-only accounts. (dropdown is grayed out) -> read only should be able to read everything
For the application control policy: applications are not visible for read-only accounts. -> read only should be able to read everything

Due to our systems having large data sets, we need to schedule the scans so that they can finish. We have Systems with 4 x 15 TB drives, attempting to scan the entire system every week is impossible.

Importance: Critical,

we used to be able to do it. The old console had the same limitation, but we worked around it by modifying the scheduled task, the Central version keeps updating the task we modify.

Due to our systems having large data sets, we need to stagger the scans so that they can finish. We have Systems with 4 x 15 TB drives,

We would like to schedule multiple scan (like we could with on prem) each one for a different location and to occur at a different time.

Importance: Critical,

we used to be able to do it, adding this to the console is a feature request, The local client used to have this ability, which is where we used it so that is a give it back feature.

Thank you for releasing the Sophos internal removal tool, SophosZap.exe! It has made uninstalls when issues occur so much easier. Now we need a version for when Macs have similar issues and have components not responding leading to a full uninstall/reinstall. Please, oh please!