Introduce role based access / delegation permissions to permit users to monitor quarantined mail on behalf of another user through the self service portal. E.g. An assistant can monitor quarantined mail for their manager.

Would like for the useragent to be included with the click details. This will help us determine if some "programatic" item clicked the message like another security product; or an end user.

Would also like to see the number of clicks. as some analysis tools will run the link though multiple tools and will increase the number of clicks substantially.

Respectfully,
Jay Orellana

It Would be very nice if the Endpoint protection had a cloumn for Device comments. E.g. An endpoint which was offline for long time could get a comment, that this Device is in use and mustnt deletd!

Having the ability to customize the "Blocked Message Notification" would allow the users to understand the DLP violation. Also for the admins, it can be quicker to determine which policy the user triggered. Besides editing the verbiage, the company logo needs to be an option.

We are looking for a solution for a customer who is wanting to have scheduled scans every 12 hours. In addition to setting a time for scheduled scans, maybe we can have an option to schedule 2 scans in a day or to have the option of setting scans the hours passed since the previous scan.

There needs to be more granular control to the Inbound Allow/Block list. For example, I should be able to "Allow" a certain address or domain to permit email delivery specifically for DLP violations, or allow "bulk" only for certain domains all the while still adhering to the other checks that are in place . As it stands right now if I put an email or domain on the allow list, all other checks are being ignored.

Please add a wild card feature for search so I can mass delete devices for students that graduate.

Good afternoon,

We conduct our annual cybersecurity training in both English and Spanish. One of the modules that we use, “Working from home”, is available only in English. Due to the increased number of employees working from home, we consider this training to be very important. Are there any plans to translate “Working from home” into other languages, specifically Spanish?

For Live discover scheduled queries it would be very useful to see if a report contains data. As an admin if I schedule daily queries I should be able to skip over all the entries that do not contain any data so i'm not wasting time opening them from the list. It should also be possible to create an alert or emailed report of these queries to an admin so they can be alerted as soon as possible to a suspect event or activity

FSC Test QA 1

Feature request to support federated sign in using the users UPN so users with an email address alias different than their UPN can use federated sign in for self service portal.

I’m unable to get the summary on Enterprise Dashboard but it’s for individual sub-estate only. This is going to be very much tedious task to pull the report for all sub-estates. So, is there a way I can get the summary for ALL sub-estates in single report?

Here we are looking at potentially many domains so it doesn’t really help when every week client have to pull the report for all many domains individually. Please let me know.

For our ISO 27k audits we would need the possibility to create a report/export that lists
- All scan exceptions/exclusions

- All config settings (e.g. blocked files, runtime protection, deep learning and so on)

based on policy and server name.

sdsds

LIVE DISCOVER: WOULD BE HANDY TO QUERY powershell executionpolicy

Query: Sophos Device Encryption on MAC not showing proper encryption method.
Please show us proper Device Encryption Method on MAC encrypted drives like Windows OS.

Please tell me how to display the correct time on reports. Screen display is EST. PDF version displays UTC time zone and CSV version of same report displays correct time zone EST in military format.
How can I correct the PDF version to the correct time zone?

This has been escalated and the end result it was suggested to post it here.

Hello,
I have an alert that says "Your API token will expire in 30 days" but there is no other information, it doesn't tell me where to find this, there is no link to click, no "click here for more information". I feel like there should be a way for me to go right from the alert to wherever the problem gets fixed.