Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

XG Fan

My feedback

  1. 8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 

    similar request @ https://ideas.sophos.com/forums/428821-sophos-central/suggestions/35978317-support-mfa-in-active-directory-sync-tool

    ad sync / service account role should also grant zero access to anything other than backend functions required to perform the sync function. The sync user should not have privileges in the web console, policies, or settings.

    XG Fan supported this idea  · 
  2. 18 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Sophos Central » User management  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 

    similar request @ https://ideas.sophos.com/forums/428821-sophos-central/suggestions/33239809-allow-a-super-admin-or-admin-to-be-tagged-as-a-se

    ip-based access control for the sync user would also be an improvement over no mfa, no access control.

    XG Fan supported this idea  · 
  3. 476 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    91 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →

    The APIs are now available, please see https://developer.sophos.com/ for more details.

    For example, retrieving tamper protection status is available this way: https://developer.sophos.com/docs/endpoint-and-server/1/routes/endpoints/%7BendpointId%7D/tamper-protection/get

    I appreciate many people simply want the admin UI to offer the functionality rather than just APIs, and we will update it to allow column addition/removal and filtering on any column. However, this is likely to not be until around August as the development team have been reassigned to assist another project for a few months. Sorry for the wait, I would very much like this to be available earlier.

    I’ll leave this item open and “started” until the admin UI changes are released, but please do be aware of the API option in the meantime.

    An error occurred while saving the comment
    XG Fan commented  · 

    global tamper protection status without having to manually go through each endpoint's page is a must when 1000+ endpoints and multiple admins are involved.

    XG Fan supported this idea  · 
  4. 1 vote
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  Sophos Central » General  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan shared this idea  · 
  5. 239 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    27 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →

    We are looking at changes to help avoid large numbers of reboot related alerts. This work is not yet planned, so I can’t provide a date, but the proposed implementation would be as below.

    For urgent reboots, e.g. to complete removal of a competitor product being replaced, users will see a notification immediately.

    For non-urgent reboots (i.e. where protection is maintained), users will not see a reboot for the first 2 weeks (typically they will reboot in this time anyway, e.g. for windows updates).

    If not rebooted for 2 weeks they will see a notification they can dismiss.

    The reboot notification be persistent on an endpoint; it will require acknowledgement by the user to clear it. We would expect to have a registry key to be able to prevent this behaviour for systems like shop tills, advertising displays and so on.

    If a further week goes by without a reboot…

    XG Fan supported this idea  · 
  6. 310 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Planned  ·  40 comments  ·  Sophos Central  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
  7. 20 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
  8. 12 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 

    yes, QoS / throttling ability is needed for to-the-box traffic

    XG Fan supported this idea  · 
  9. 3 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    0 comments  ·  XG Firewall » Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan shared this idea  · 
  10. 8 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  XG Firewall » Wireless Protection  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan shared this idea  · 
  11. 153 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    13 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 

    properly implemented cli will always enable admins to get things done faster than is possible from point & click gui.

    XG Fan supported this idea  · 
  12. 784 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    97 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 

    looking for a way to schedule the pattern update downloads at designated times to avoid bandwidth saturation potentially impacting voip during business hours at locations with slow asymmetric internet connections.

    XG Fan supported this idea  · 
  13. 397 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    16 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
  14. 51 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
  15. 50 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    5 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 

    a single gui or cli function that combines static routes, policy routes, dynamic routes, firewall rules, etc with precedence and gateway status indicated would be useful.

    XG Fan supported this idea  · 
  16. 6 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    An error occurred while saving the comment
    XG Fan commented  · 
    XG Fan supported this idea  · 
  17. 19 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    2 comments  ·  XG Firewall » Network Protection  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
    An error occurred while saving the comment
    XG Fan commented  · 

    Another vendor refers to this as ip sla tracking. The design shortcoming in XG is described at https://community.sophos.com/kb/en-us/123611 - Policy routes and firewall rules in XG support tracking but not static routes. Policy routes or firewall rules don't seem to affect XG-initiated traffic. Since static route seems to be the way to manage certain XG-initiated traffic from the gui, ip sla tracking functionality in the static routes gui would be helpful.

  18. 87 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    12 comments  ·  XG Firewall » VPN and RED  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
  19. 202 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 
  20. 473 votes
    Sign in Sign in with Log in with your Sophos ID
    Signed in as (Sign out)

    We’ll send you updates on this idea

    64 comments  ·  XG Firewall » Base System + General UI  ·  Flag idea as inappropriate…  ·  Admin →
    XG Fan supported this idea  · 

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.