Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

Philip

My feedback

  1. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
  2. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
  3. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip shared this idea  · 
  4. 384 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  71 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
    Philip commented  · 

    I am receiving "Reboot required" alerts in the Console from computers that are offline. The trigger appears to be the scheduled scan.

    I'm also getting "Reboot required" alerts in the Console from computers that have been deleted and are no longer reporting to the sub-estate the alerts show up in! It is obvious that these alerts are generated in the Console, from the Console and have no bearing on what's really happening on the endpoint.

    These "Reboot required" alerts also appear to easily become "stale" and continue to report a reboot is necessary even after the endpoint Events list reports that a reboot has occurred.

    The best strategy at this point for dealing with these alerts is to clear them all and see if any more are generated to separate the current ones from the old ones.

    Philip commented  · 

    You can tell if Tamper Protection has been turned off or on by looking at the Events Report and refining the report to show Policy non-compliance.

    Philip commented  · 

    It's not targeted, but Reports>Events>Policy Compliance>Policy non-compliance will list TP non compliant along with status on other policies.

  5. 7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
    Philip commented  · 

    Also, please either make the default sort for Alerts display by descending timestamp or make the changes to the sort selection "sticky". Sorting by criticality is not as useful as sorting by time of occurrence.

  6. 10 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip commented  · 

    Thanks for adding this new functionality! But now we need the Enterprise Console to make a distinction between _selecting_ a sub-estate (to launch) and _marking_ a sub-estate (for deletion).

    I used to be able to select a sub-estate then click Launch. Now, I have to _unselect_ the sub-estate before I can select another one to launch to.

    Philip supported this idea  · 
  7. 14 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
  8. 296 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Planned  ·  39 comments  ·  Sophos Central  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
    Philip commented  · 

    Please put the name of the sub-estate which originates the alert as part of the email message.

  9. 5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip commented  · 

    For each sub-estate, select Global Settings, then under the General category you should see "Alert Email Settings." By clicking on this you can add email addresses to send alerts to for that sub-estate. No, there is no way to select which alerts send messages. Any email address gets messages for all alerts. Be Careful! On that same screen is the option to get an alert each and every time one happens no matter how often. So be sure that's what you want before you turn that on.

    When the feature first started, the alerts from the sub-estate I manage directly contained the sub-estate (or company name since they're the same for us) in the subject line of the email alert. Now, all the email I get no matter what sub-estate generates it contains the same source identification in the subject line which is not so helpful.

    It would be so much more helpful if the sub-estate name was part of the email alert message.

    Philip shared this idea  · 
  10. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip commented  · 

    Just a guess off the top of my head, but if the file is in use by Windows, Sophos isn't going to be allowed to delete it. Heck, if you were in front of the computer and tried to delete the file yourself, you'd probably be told it's in use.

  11. 11 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
  12. 26 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    4 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip commented  · 

    This forum has no "NO" votes, but this idea would get one from me. Please do not give me the headache of managing the deployment from AWS (ie. "the Cloud") of complex software to hundreds if not thousands of endpoints connected every which way, routed through who knows what kinds of firewalls, private routers and numberless ISP's, using obscure udp or whatever ports. No thanks.

  13. 7 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » Device Encryption  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
  14. 3 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip shared this idea  · 
  15. 9 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
  16. 8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
    Philip commented  · 

    I would also add OS and version to that report, please.

  17. 8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection » General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
    Philip supported this idea  · 
    Philip commented  · 

    Please add columns for "Group", "IP Address" and "OS Version" to the Computers Report in Sophos Central.

  18. 1 vote
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip shared this idea  · 
  19. 28 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Philip commented  · 

    Logs and Reports>Events Report>Policy Violations>Policy non-compliance

    This report will display computers that are not compliant with policies, including Tamper Protection. It will not show when/if the computer violating the policy was returned to compliance, but you can add that to the report if you wish.

  20. 2 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos ID New Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    Philip commented  · 

    Do you see any updates or communiques at http://sophserv.sophos.com?

← Previous 1

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.