Sophos Ideas

Do you have an idea for a Sophos product? Do you recognize a good idea when you see one? We want to hear from you!

Shane Burke

My feedback

  1. 164 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Started  ·  11 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Shane Burke supported this idea  · 
  2. 25 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection » General Endpoint  ·  Flag idea as inappropriate…  ·  Admin →
    Shane Burke supported this idea  · 
  3. 6 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Endpoint Protection » Malware prevention  ·  Flag idea as inappropriate…  ·  Admin →
    Shane Burke supported this idea  · 
  4. 8 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    3 comments  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Shane Burke supported this idea  · 
  5. 13 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    6 comments  ·  Sophos Central » User management  ·  Flag idea as inappropriate…  ·  Admin →
    Shane Burke commented  · 

    I agree, it forces us to set "Select admins who will need MFA. (All others sign in with password only.)" and to trust all admins will add each new account to this list when setting up any new accounts.

    Shane Burke supported this idea  · 
  6. 5 votes
    Sign in
    (thinking…)
    Sign in with: Facebook Google Sophos Features & Ideas Laboratory
    Signed in as (Sign out)

    We’ll send you updates on this idea

    1 comment  ·  Sophos Central » Endpoint Protection  ·  Flag idea as inappropriate…  ·  Admin →
    Shane Burke commented  · 

    Another issue with this is that you cannot set MFA for all admin accounts. Instead you need to set to "Select admins who will need MFA. (All others sign in with password only.)" and add an extra step to the process of creating any admin accounts to add to this list or MFA is not enabled. This is another security risk as you are trusting admins to follow this step on every account creation where creating either this type of account or giving an option to provide MFA to all users but a list of users. I don't believe having this role for AD Sync an admin account is as big a risk as this. If you set the password to a secure randomly generated long alpha numeric password and never use the account the risk is very low.

    Shane Burke supported this idea  · 

Feedback and Knowledge Base

icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.