Partner Request.
We had a roll-out of 30 Mac's (OSX) and each time, once the installer started the process needs to download additional 120MB, which x30 means 3.6GB of additional "installer data".
Please find a better way to handle this, by offering an optional "complete-full-installer" with all updates included (of that day/week or month) that can then be deployed locally to all machines, for example with a third party tool and doesn't require to download that many data on each machine.
Thanks.

We have partners asking for the possibility to configure E-Mail Alerting similiar to the SEC. In case of a e.g. malware detection the customer and/or partner should be notified by an E-Mail.

Ability to trigger SDU that exists on local client from cloud console. This would then be configured to auto send logs to the registered admin address (or a different address of their choosing).

I would like to request a binary removal tool that is part of the client side installation that can only be triggered by the administrator. This utility will trigger a thorough uninstall and reinstall. This will greatly help situations where there are problematic installations and remote access is not possible.

To reconcile our user base with Sophos anti-virus. We do not want service accounts to be synched with Sophos Cloud. Only specific User OU’s in Active Directory.

When asked;
"Firstly, would you want to specify base DN(S) or edit the LDAP query?"
They have advised;
LDAP Query

Partners are asking for a single cloud account (not on the partner portal), where they can manage multiple customers.
Which I guess would mean that the licenses should be taken and then assigned from a pool, that multiple active directory structures can be synchronized for each customer on the same account and not only users can be put in to groups, but also devices, in order to not confuse the customer machines.
The installers and provisioning mechanisms must be adapted as well, in order to aim the proper group (customer-group).
...Sounds like a challenge and a lot of work :-)

From within the Sophos Cloud product, it'd be really useful to be able to post notifications to an end user machine. For example "There will be an unusually large AV update on Thursday - please allow time for this to complete"

or

"You can now get corporate email on your Mobile Device - go to intranet.local/BYOD for more information"

Currently there's only an option to add additional administrative logins/accounts on a customer.
A partner wishes the possibility to add a read-only account, beside admin accounts.
Maybe other permission levels are desired too.

'nuff said.