Can we increase reporting to Weekly? Daily reporting being the longest time means each of our staff get about 10 emails everyday which is unnecessary.

A much better way of doing it would be every week just send one list of alerts instead of a separate email for each individual alert. This gets very excessive very quickly when you have 1000+ endpoints.

This way Sophos Central does not end up sending massive spam needlessly to our inboxes. As such, we've turned e-mail reporting off until this is fixed.

Currently to add an allowed host to the Isolation bypass list it much be applied in a policy to individual clients, it'd be great if it could be set at a global level.

Hello,

We need to be able to edit the information regarding device control. When a external device is plugged in a computer we don't know to whom it belongs.
Also, it would be better if we could see in real time that a device is connected to a computer using the USB entry and then decide if we would allow it or not by just clicking a button right beside the information reported.

Application control policy should have "authorized\allowed" applications list like it was for on-premise.

I can't seem to be able to download the endpoint only installer. If I deselect encryption and intercept x from the "Choose Components" option, the download button greys out.

Can we redirect users accessing certain HTTPS websites to a predefined webpage and allow them if they still have a business need. especially when they are uploading any data to a HTTPS or FTP(S) which might fall under data leak protection. Unless you popup a warning message or redirect them to a page and then secure a consent from user.

Popup a warning message when a user tries to access HTTPS website to remind the user on a corporate policy. These days most of the websites are on https, and we need to alert end users accessing certain website to remind about the corporate policy and refrain on unintended actions.

Unable to start or restart services from the endpoints and sophos should be reinstalled to get problem rectified

Please increase the time-out for policy non-compliance.
Alerts are creating too many false positives

Detect iOT capable items on the domain network, for possible protection without an agent being installed on iOT, such an example is a printer that has windows 10 OS in the background or a touch screen with windows 10 OS, we may not want to install an agent , but have the ability to scan and detect any possible risks , or at least be made aware in-case of remedial action.

if this could be visible in the central dashboard this could be usefull for Cyber essentials reporting

Requesting ability to delete past Phishing Campaigns from Sophos Phish Threat

I need a report or a screenshot of the Vendor, Product Name, and Agent Version for my auditors. It would be as simple as adding a column under the device list so that it can be exported into a csv file. This is required for the Sarbanes-Oxley Act to prove we have updated endpoints.

There needs to be the availability to establish multiple scan schedules within the Threat Protection policies. Since users can only subscribe to one policy, this seems like an obvious option to have available. If you want to run quick scans on certain days and deep scanning on other days or perhaps change up the scanning times on weekends...None of this is possible. You can only set 1 time and 1 type of scanning for a specific range of days and that's it.

End users are not going to use a command line to install Endpoint support, we only have a limited number of Intercept X licenses so we are constantly out of compliance since we can no longer install Endpoint with Intercept X.

Either incorporate it as the same product, or separate it so that it can be installed separately.

In der alten UTM Version gab es die Möglichkeit ein zentrales Kennwort für den Manipulationsschutz zu hinterlegen. Dies wäre auch in der Sophos Central wünschenswert, da nicht jeder Rechner online ist und somit das ausschalten des Manipulationsschutzes über die Richtlinie nicht immer sofort möglich ist. Außerdem hat bei uns im Haus nicht jeder Admin die Berechtigung dies im Sophos Central zu steuern.

There should be website management tag list, that we should be able to export from Sophos central.

Would love to see the computers have the ability to update Endpoint when they are outside of the companies network and to have the monitoring software record those updates. Many of our users travel and are gone from the office for long periods of time. The monitoring system list those computers as not being current.

Salve,ho dei suggerimenti da proprorre:
fosse possibile impostare un proxy nei criteri specifici e non solo globali..
avere un amministratore per ogni gruppo di dispositivi che riceva le email solo per quel gruppo...non di tutti

better control for alert emails. I want low and mid priority alerts grouped once a day with a list of computers.