For Phish Threat, it would be handy if there was a way to manually toggle if staff have reported the email as malicious.
For example some staff may drop by IT in person or phone in to raise this as malicious. But as there is not way to manually toggle this, the report on who is reporting emails is not accurate.

Migrated from Sophos UTM to cloud and lost ability to be notified when a virus has been detected. Support said this is as designed. Did not expect to lose functionality in migration. Would like to know if same computer is repeatedly infected so can find the attack vector and stop reinfection.

Email alerts should contain links directly to the workstation or server resource that is generating the alert rather than the dashboard. This would make it easier for faster remediation for our Technicians.

The MFA dialog window needs proper focus. It is the only input dialog on the page, so we shouldn't have to use a mouse to select the input box to put in our PIN code: UI 101

The date selection in quarantined email keeps reverting back to 'Today' If I look at emails from a previous day, and, for instance, add an IP to the block list (or do anything else) once that task is done, the display of quarantined mails reverts back, not to where I was working, but to the current day and then you have to then re-select dates. It would be better if one was taken back to the date you wanted to be working on

Add Distribution List to Security Policy (instead of just user and user group).

Could not able to block specific file or process from sophos central [for example - temp.exe/m.vbs/x.bat] we are blocking those kind of specific files through other way. please provide this option in Sophos central.

For Regular Registered Owners of XG Firewall give a free Basic Subscription to WiFi Cloud Access Point Management for purpose of firmware update | apx asset management
|troubleshooting.

Bom dia,
Essa ameaça bloqueou o usuário de se conectar pelo Chrome. O que faço para desbloquear novamente?

Future feature: Under Policies > Add Policy. You can create a new policy for 'User' and 'Device'. Can we add a 'Group' section as well so if we create a new policy we can add multiple device to a new group policy and target to only those devices in that group.

The option to open a ticket is disabled, neither the email is helpful it directs to a website where you can only chat and those people do not have updated information plus when you call it is on hold for the longest time. I am trying to resolve this issue since last Friday but unfortunately no contact from anyone.

Hi,

I'm doing the video-tutorial and i miss a lot the subtitles

No need that are in diferents lenguages. With only the english subtitle im happy

PD: Sometimes is hard to understand what is saying (things like CSV are hard to understand)

For partner managed alerts we really need a way to be able to exclude some customer accounts from this. However, I'd like to make the default for new customers created to be partner managed alerts but then have a way to go in a exclude those who may want co-management of their own alerts.

There used to be four options in the spam filtering, I cant remember the name of the category that has been removed (perhaps it was all mail) but the ones that are remaining are Confirmed Spam, Bulk or Suspected Spam.

I had a separate policy set up for 14 mailboxes that were getting a lot of messages that were not being detected as Spam, Bulk or Suspected. those users liked all their mail quarantined and then to release what they wanted from the Quarantine summary.

Could that option be restored?

Phishing Threat dashboard displays awareness factor - Users Tested % however, not all emails are user emails (ie, group emails). When testing users it should show 100% instead of considering all email accounts.

zu Endpoint Protection - Web Control
Proxys und Übersetzer sollten von einander getrennt werden. Übersetzer sind meistens gewünscht. Proxys nicht.
Auch ist die Standardeinstellung mit Blockierern ungünstig da oft besuchte Seiten wie translate.google.com und www.deepl.com nicht mehr gehen.

I was informed by support that changing a device's name is not possible in Sophos Central.
Only way to achieve it is by uninstalling Sophos on the endpoint and reinstalling the product while the device has the desired name.

I would like the ability to change the device name directly from central.
Seems like a pretty basic feature to me.

We have several domains and even some users direct on Azure without a local domain. We need all these users (3200 who share the same email domain in O365) synchronized with Sophos Central in order to have them registered as protected mailboxes.
AD Synchronisation is not working for us due to the above restrictions. The only right way is to sync direct with Azure AD. Right now we need to do manual uploads....