Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

Sophos Central

Suggest, discuss, and vote on new ideas for Sophos Central. The unified console for managing your Sophos products.
Please raise all product releated feature requests in the respective product forum

  • Hot ideas
  • Top ideas
  • New ideas
  • My feedback
  1. Add 'Audit logs' rather than just 'event logs' to API and SIEM integration script

    SIEM integration needs to have audit logs included. It is no use just having event logs. SIEM integration is currently half finished, not fit for purpose as it stands.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  2. Why ask a question if there is only one possible response?

    How dumb, why do you have a question that asks "Did this help you?" and than only provide a button that says yes? How will you ever know that it wasn't helpful at all? Stupid.
    Ever since moving to Central I just want to get a solution that is actually designed to be managed as Sophos just sucks up my life.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  3. Make Tamper Protect actually usable

    Tamper protection causes me more work than anything else. there needs to be a way to enter the Admin Password that is not through the client as that is often the first thing that breaks and the Sophos installation is then broken, the only fix involves major surgery which is unacceptable. There needs to be another way to enter the Admin password so the installation can be managed.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  4. Time filter - Logs and reports

    It would be great to have a filter for time as well as date.
    Reason: If you are receiving / sending 10000 emails per day and want to see what happened between 10am and 11am for example, you need to scroll through hundreds of pages which can take a more than a few minutes.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  5. Key word filtering

    Under the allow and block you are only allowing for IP, Domain and email.
    I suggest also adding the ability to block phrases or keywords determined by quotations

    For example: "you have won 1 bitcoin", "Click here to see my hot photos" etc

    This will then assist in blocking multiple emails that contain vulgar content in the subject/content lime instead of the user receiving them in the quarantine section.

    This would be a great way for IT staff to filter spam emails that have the same subject line or the same content. We constantly find that we receive the same…

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  6. Komfortfunktion Bericht

    Im Peripheriegeräte Bericht fehlt die Möglichkeit nach dem Datum sortieren zu können

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  7. User Profile Disk conversion

    When cookies, viruses or other malicious content is found in a user's UPD, Sophos ID's the volume instead of the User.

    Example: When malicious content is found, the device is ID'd as \Device\HarddiskVolume6\ instead of the Username or owner that owns the disk.

    The only way to discover which user's UPD is is to use Diskpart "list volume" commands via CMD.

    Would be great if Sophos Central would ID this instead of showing the volumes.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  8. Support issue

    i m not getting proper support from sophos endpoint

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  9. More options besides automatic cleanup

    Upon virus detection, could we have more options(quarantine, rename detection and/or move to a specific location) instead of automatically cleanup?

    Some infected word/excel documents are corrupted/deleted after automatic cleanup which is causing a lot of issue to the enduser.

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  10. Remote Workstation scan without sophos installed

    Scan remote ip/workstations

    On the local sophos client or cloud solution it would be nice to manually enter a workstation/server target to scan. As target client may not have the client installed or is a suspected threat.

    Occasionally we have workstations in our environment which are 3rd party managed and it would be useful to scan them occasionally to make sure their AV is catching threats.

    Thanks

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  11. Adjust start time of phishing campaign to something other than top of the hour

    I would like to see the ability to set the time a phishing campaign email goes out to something other than the top of the hour. Anything we can do to help make the phish threats appear more legit will be beneficial.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Phish Threat  ·  Flag idea as inappropriate…  ·  Admin →
  12. Renaming Device

    Would really like to be able to rename a device and also assign asset numbers

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  13. Settings for threat cases

    We would like to have settings for the creation off threat cases.

    For example you can turn off the automatic creation of threat cases for blocked websites or sites with maleware.
    The Websites gets blocked anyway and me as an administrator don't need a threat case for this.

    The only current way is to deactivate the complete detection for malicios websites to stop the creation of threat cases for websites and this is not recommended by a sophos stuff.

    "https://community.sophos.com/products/sophos-central/f/sophos-central/114038/settings-for-threat-cases"

    Thank you for everyone who gives a votes for this. Lets make Sophos Central even better.

    4 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  14. Allow whitelisting from Email Quarantine page

    Please provide a button in the email listing items that are stuck in quarantine to "Add to whitelist and release".
    Also, please add buttons in the quarantine to ALLOW/BLOCK easily by simply selecting the email and then clicking the right button. Provide an option to ALLOW/BLOCK the email address or the domain.

    Currently, the process to add items to the allow list is clunky and hard to do for the end user. Please provide simplicity.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Email Gateway  ·  Flag idea as inappropriate…  ·  Admin →
  15. Request for Enterprise Features

    OK, Now that I have been using this for a while there are a couple of things that would make this dashboard better, and by better I mean a whole lot better, and possibly not just the dashboard, but the application also.
    1. Whenever there is an error, or an alert, or whatnot, and it says something like reboot required, or policy not in compliance, or realtime protection disabled, there should be a friendly little link or button that then makes the agent take care of restarting, whether on a scheduled time or immediately, brings the device back into compliance,…

    3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  16. Notification of Tamper Protection Password used

    Create an Alert that will trigger if a tamper protection password has been used on a device. This notification should show up in the device's events.

    2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  General  ·  Flag idea as inappropriate…  ·  Admin →
  17. Feature Request - Organisieren von Kampagnen Vorlagen

    Hallo,

    es wäre super, wenn man zum einen die benutzerdefinierten Vorlagen der Kampagnen besser organisieren kann. Konkret würde ich mir wünschen, dass man bspw. Ordner erstellen kann, um dort angepasste Vorlagen abzuspeichern. Zudem ist es derzeit ein Bug, dass man benutzerdefinierte Vorlagen nicht umbenennen kann. Einmal angepasste Kampagnen kann man auch nicht löschen, dies wäre, zwecks Übersicht natürlich auch sehr Vorteilhaft.

    Grüße
    Dennis Jost

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Phish Threat  ·  Flag idea as inappropriate…  ·  Admin →
  18. Banner on Sophos Central alerting false reporting and other known issues

    A banner on Sophos Central alerting known issues such as false reporting that Wireless Endpoints are down would be helpful. Hours of troubleshooting would be avoided.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Wireless  ·  Flag idea as inappropriate…  ·  Admin →
  19. Be able to set lower e-mail alert frequencies

    Can we increase reporting to Weekly? Daily reporting being the longest time means each of our staff get about 10 emails everyday which is unnecessary.

    A much better way of doing it would be every week just send one list of alerts instead of a separate email for each individual alert. This gets very excessive very quickly when you have 1000+ endpoints.

    This way Sophos Central does not end up sending massive spam needlessly to our inboxes. As such, we've turned e-mail reporting off until this is fixed.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
  20. Apply automatic activity exclusions for Windows Internal Database

    Windows Internal Database is a variant of SQL Server Express 2005-2014 used by Windows Server Update Services (WSUS) and Windows SharePoint Services, included in various version of Windows Server.

    It is currently not detected for SQL server exclusions as per https://community.sophos.com/kb/en-us/121461 and so manual exclusions have to be applied.

    It would help for Sophos Central to detect this the same way it does 'normal' installs of Microsoft SQL Server and set up exclusions automatically.

    It is installed to C:\Windows\sysmsi\ssee\ or C:\Windows\WID and works with *.mdf / *.ldf files the same as a normal SQL server install.

    1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Server Protection  ·  Flag idea as inappropriate…  ·  Admin →
  • Don't see your idea?

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.