Get an email alert when a specific user logs into the VPN8 votes
We get phishing mail with faked sender!
mastercard.com text = "v=spf1 include:spf.protection.outlook.com
include:deliverygateways.masercard.com include:external.mastercard.com include:ma.mastercard.com ~all"
paypal.com text = "v=spf1 include:pp._spf.paypal.com include:3ph1._spf.paypal.com
include 3ph2._spf.paypal.com include:3ph3._spf.paypal.com
include:3ph4._spf.paypal.com nclude:c._spf.ebay.com ~all"
The problem with this is ~all
The UTM marks the mail somewhere in the header and forwards it.
This is not good!
It would be better if you could adjust the response to such a mail:
reject this mail
accept this mail
treat this mail as SPAM (marked as SPAM)
It could thus enable a lot more control over such mails!1 vote
Would be great to have an installable SSL-VPN client for Windowsphone mobiles.6 votes
Currently phase 2 SA lifetime can only be specified in seconds, however other devices often include a lifetime in kilobytes as well by default (such as Cisco ASAs). When connecting to outside organisations they often request this setting to be configured.3 votes
We need to be able to more precisely control the CCLs, should be able to drill down into the individual categories and select/deselect what we need.1 vote
As you know technology has evolved very quickly, even social media platform such as Facebook, Google+, Linkedin, Twitter and etc. can also know as cyber threats and threats that can be prevented by early detection and containment before an attack towards a company. I would suggest by having a feature; social media intelligence gathering, for detecting, analysing, reviewing. Hope that you could consider this as a feature. Hope to hear from you soon. I hope this idea will favour Sophos in times to come especially if there is BYOD monitoring.1 vote
Secure Certificate by User SID instead of Password. Currently we have an issue when user changes their password on a Non safeguard system.1 vote
My customer had bought the Sophos Endpoint Protection Standard.
And Data protection function can not block the *.3dm file according to their need.
I have recently opened the session to Sophos support but still not up2date yet.
Now hope you up2date database for Data control on Sophos Endpoint Protection to block the .3dm file.
Please update as soon as possible. My customer are complaining about it!
Thanks in advance,1 vote
We have customised the windows logon provider with our own company logo icon, once Sophos is installed this is changed to the Sophos logo.
To ensure that this does not cause undue grief, we have used a non-supported method to modify the bitmap in the SGNCredProvn.dll file. Sophos should supply a support method to add a custom bitmap to their credential provider1 vote
The installation of Safe Guard adds a new credential provider, this can be quite confusing to users and when accessing a system via a Remote Desktop client you are presented with 4+ options of Credential Providers. (on some laptops this menu option is larger than the screen)
To counter this we disable the Windows logon provider by adding a DWORD Disabled = 1
This should be an option in the Safeguard Policy / installation1 vote
When using the windows credential provider the logon information is provider as domain\user (defaulted to our domain)
When using the safeguard credential provider there is a drop down to select the domain or local machine.
It would reduce the questions from users if the logon experience is the same across the systems.1 vote
Yes we can promote AD users to be Security Officers, but they must still authenticate using their password that has been sync'd to the safeguard.
If these users have not used sync'd their password by using a safeguard computer then they will not know their password.
Some security officers may only access this console once or twice a year, so password will not be up to date.1 vote
Have an option to map network drives after connecting to VPN Profile. A setting either in the Client or the Remote Access Profile of the UTM
Have an option to map network drives after connecting to VPN Profile. A setting either in the Client or the Remote Access Profile of the UTM1 vote
It would be great if you iplement the new security heartbeat into the utm 9.x also.7 votes
Work with Microsoft to get listed as an Azure Site-to-Site Validated VPN Device.6 votes
The Reporting Tool under Web Protection in the UTM does not show results for Google searches. I called technical support and they suggested I put this in on the feature requests. I do not know if this is necessarily a feature that does not exist or if there is an issue with the reporting function.1 vote
To allow authentication from the UTM to use a back-end RSA/Vasco token server to authenticate user.16 votes
PFSense has a great package called SquidGuard that can be set to display a blank gif image instead of the default block page for advertising. This works extremely well with HTTP & HTTPS (No need to install a certificate). I am aware you can set a custom block page for advertising, but I have had no luck with this in XG. Also browsers like IE complain about revocation errors with XG when it filters HTTPS advertising, but PFSense just blocks it with no errors.3 votes
The ability to upload individual licenses to all linked/connected UTMs through a single SUM instance/interface. In a scenario where a user might have 50+ UTMs connected a SUM, uploading licenses to all them can be a tremendous hassle.1 vote
Free Dynamic DNS - Get hostnames for your dynamic IPv4 and IPv6 addresses within seconds.8 votes
- Don't see your idea?