Controlled Updates secondary pause confirmation button

I would like to be able to select all machines on the Alerts tab after you have expanded the list and be able to force an update from there instead of having to click into each machine, click update, and then have to back out of it to do the same for the next machine. We usually have over a hundred failures to update about once a month and it's extremely tedious to have to manually update every machine this way.

in policies for web control, the user list needs to have a these users are excluded list rather than these users are included list.
this is so any new users can have the policy applied without having to have someone babysit it all the time.

Just attempted to use the EAP program for endpoint. Worked on some machines, however it broke all Microsoft surfaces. For some reason no one could connect to wifi or bluetooth. We have to uninstalland reinstall the endpoint after removing them from the EAP program. Just a heads up.

When a user clicks on block or allow sender when receiving an email, a second prompt opens up confirming the action of the user. Probably a third prompt if the action is to block.

This will prevent a user from accidentally and unconsciously blocking senders. Most especially for on-the-go users who use phones heavily for their emails which has a high tendency of accidentally and unconsciously pressing "block sender" since they have a smaller screen and options for the banner are close to another app setting in the Outlook app.

Need to be able to clear "malware in quarantine Cleanup failure" on many machines at once without having to rename events.db individually.

Usability recommendation. With 2-factor authentication enabled I need to type in a one-time code texted to me by Sophos. The "Verify Your Login" window has a text input field but it it not active by default, you have to click on the field before you can type the code. Make that field have the focus as soon as the page loads please.

the ability to restart clients, push reinstall of software update to new agent on a schedule.
The ability to push a uninstall script.

Hello,
We have rolled out Sophos Endpoint Protection to a customer using the Email Setup Link. This is the first time we have used this. Some end users were confused over which link to click and attempted to install Sophos Virtual Environment Protection.
It would be useful to be able to tailor the email to exclude this option and also add in custom instructions.

It's necessary to hava a glance on an isolated cliend after synchronised security turn to red, before I release the isolation.

But when the client is in the field and not in the office, it's not possible to check it without teamviewer. And when the user is isolated, he is not able to tell me his public IP to reach him with remote desktop.

where is ALLOW button?, this interface is just awful i have been looking how to allow a blocked/threat for 10 mins now cant find it this is just awful and adds to frustration

Currently in a rule of Messages containing certain types of attachments. The .pages extension detects as .zip.
In the rule How can you block .zip and allow .pages?

{{77}} {{77}}

The on-premises Endpoint had a way to view and interpret the ALC.log file which was very helpful for diagnosing installation and update issues. Further, knowing what those code events corresponded to made it simple to scan other computers on the network to check for them to see if anything else had errors and what they were.

Having this functionality in the cloud Endpoint would be helpful. Or even a standalone executable that you can open the log files with to interpret them into human readable format.

No me deja borrar un equipo después de haber desinstalado el sophos

Customers would like to see more regional phish threat campaign contents i.e New Zealand, Banking ANZ, Kiwi Bank, BNZ, NZ Police

Allow custom labels to be added to peripheral device exemptions for easy identification in the event that a specific exemption needs to be removed.

It would be wonderful to have a pool of tamper protection keys or to be able to manually specify a tamper protection key policy per client or device group.

I would love to see the ability to create device (rather that user) level web content filtering policies.

functions like scan , clean up or isolate on the main page where devices are displayed. I would love to select multiple machines that missed their schedule and kick off one immediately or isolate.