Company and Contact Information
Company: Gosford City Council
Contact: Elwyn Williams / Matt Roberts
Sophos Partner (if applicable):

Sophos Product Information
Sophos Product: Mobile Control
Version in Production:3

Feature Request Summary
How will this new feature address your business requirements?: Enable us to view takeup of device types on mobile management over time – reporting such as showing current device types, and a report on activation date perhaps
Can you also report on installed applications on all devices? – determine if anyone using an inappropriate application.
How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have: 3

Company and Contact Information
Company: ESH Group
Contact: Ashley Hill
Sophos Partner (if applicable):

Sophos Product Information
Sophos Product:SBAV ( or adaption of Sophos Endpoint Protection )
Version in Production:10.2

Feature Request Summary
How will this new feature address your business requirements?:

· A noninteractive network ( or PXE ) bootable AV scanner would give enterprises the ability to regularly perform a company wide scan of the network from a trusted operating system to provide confidence all known threats are detected and removed as modern malware regularly can only be detected and removed from safe mode.

· The ability to scan all hosts on a network at once will also help prevent re-infection of malware from one host to another, and will allow a point in time audit to be advised.

· Allows staff to see an active safety

· Ability to DR Plan a clean up after a major infection

· Ability to clean-up systems after a previous vendors has failed.

· Ability to scan a BYOD laptop from a trusted OS and get a result.

· Atleast the ability to only detect the problem and log the one found to the local disk for auditing and discovery.

· Non interactive is the key point.

How would you rate the importance of this feature?; 1 = Critical, 5 = Nice-to-have:2
Due to a previous vendor not detecting all threats, it is good to have a clean slate, or even just have some observance of what has been missed.
Once implemented will also allow for us to develop some tools to review the results for auditing purposes, and prepare for a DR plan.

Support the ability to "import" and "synchronise" entries from a public facing DNS, such as Amazon Route 53 into the Sophos UTM so that devices internal to the network doesn't have to reference the public facing DNS to resolve email, HTTP or HTTPS servers that are hosted internally. For example, if I give you my Amazon credentials, Sophos can "scan" all the entries for all domains, find those that reference the IP addresses of the Sophos device and create entries for them. If we add another entry later on to Amazon Route 53 to deal with another web server, Sophos may automatically configure its DNS accordingly.

To be able to pass on more information to the voucher's recipient it would be very helpful to be able to edit the layout of the voucher or at least have two separate (HTML) text fields for the Hotspot's homepage and the voucher itself.
At this build (9.003-15) you can only have one text which can be HTML and displays correctly at the Hotspot's homepage, but without any layout (plain-text like without formatting) when "printing" the Voucher's (PDF). In most situations where the connection procedure to WiFi (eg. company or hotel WLAN) is not seamless - when SSID and encryption key information have to be passed on - and even worse you have this information in more than one language - the voucher's text is unformatted and merely "unreadable". Passing on HTML formatting to the voucher's PDF for me would be sufficient.

When you choose to install an update the system just does it there is no feedback to say are you sure, especially when the system is likely to reboot after an update, for enterprise class use with the UTM 120+ then this could be a critical piece of equipment, my other request (main request) would be to have information about what is happening when tasks take longer than a few seconds (like updates), popup the up2date love log window to show the progress and actually tell the user when its done or have some sort of progress bar, a box that says... oh yeah i might reboot and btw the update is started now and there isn't anything you can do to stop me... dialog is useless.

I'm using the UTM9 soft appliance as an SMTP proxy, but I'm having trouble configuring this w/ regards to incoming Emails with encrypted attachments (like password-protected zip-files). Basically, what I want to do is:

-default action for encrypted attachments should be quarantine
-define a whitelist for sender addresses allowed to send plain text Emails with encrypted attachments

Problem is, even though I defined a whitelist and skipped the "Email Encryption" check for it, emails w/ encrypted attachments coming from the senders I whitelisted are still getting quarantined. The only way I found so far to get those Emails through is to skip the "Antivirus checking" check as well, but that's not what I want. Antivirus checking should always occur, but unscannable attachments should be ignored for senders I whitelisted.