What's new in Sophos Central

We regularly update Sophos Central with improvements or new features. You can see the details here.

October 20, 2016

Support for corporate security tools (SIEM integration)

Security information and event management (SIEM) integration has been added to Sophos Central Admin. Whether you use Splunk, ArcSight, or any number of solutions, you'll find data easy to ingest thanks to Common Event Format output. Read more

Support for Windows XP and Server 2003 is ending: act now

Sophos Endpoint Protection for Windows XP and Server 2003 will be retired soon. Speak to your account manager if you need extended support. Read more

September 28, 2016

Better collaboration with audit logs and new role-based access control

This release allows for granular permission-level visibility into the existing audit log feature by way of role-based access control (RBAC) functionality. RBAC can be set up to meet the needs of your IT organization with pre-defined full-access, read-only, and help-desk roles. Read More

Minor UI changes for Firewalls and the Admin menu

We've streamlined the UI a bit: Firewall registration has now moved to the System Settings menu. And in the Admin menu, "Administration & Licensing" has been split into two pages: "Licensing" and "Account Details". Read More

Sophos Central Wireless adds exciting new features

This Wireless update packs a wallop! Enjoy fast roaming, dynamic VLAN, MAC-based access control and more than a dozen additional features and enhancements. Read More

September 22, 2016

Introducing Sophos Intercept X

Sophos Intercept X uses next-gen signatureless exploit prevention to protect endpoints against ransomware and advanced zero-day threats, and includes visual root cause analysis and deep forensic cleanup features. Read More

Device Encryption 

Now you can protect your data in case computers are lost or stolen, and comply with regulatory requirements. Sophos Central Device encryption lets you manage full disk encryption using Windows BitLocker. If your users forget their PIN or password, they can call the Help Desk or use the Sophos Central self-service portal to access recovery keys.

September 8, 2016

Server Groups

Server Groups let you set policies on a group of servers rather than individually.

August 25, 2016

Sophos Intercept Beta

Sophos Intercept is a new offering for endpoints. It protects against ransomware and exploits that are used to infect devices. It also helps you investigate security breaches. You can install Sophos Intercept together with Sophos Endpoint, or, if you prefer, alongside other anti-malware products. See https://community.sophos.com/spectrum/.

Early Access Programs

EAP (Early Access Programs) is a new way to try out new features from Sophos. You can see all public Beta features and join the ones that interest you. EAP also includes invitation-only Betas, where we send you a code that gives you access. And, although we would be sad to see you go, you can also use EAP to leave a Beta. Take a look.


August 17, 2016

Email Security

Email Security is a secure email gateway you manage from Sophos Central. Features include:

  • Stops spam, phishing and malware.
  • Supports Office 365, Google Apps for Work, Exchange 2003 and later, and more.
  • Enables global blocking of addresses or domains.
  • Has a self-service portal where users can release quarantined email.

You need a Sophos Email license to use it. For more info see https://www.sophos.com/en-us/products/sophos-email.aspx

August 10, 2016

We’ve now made these features available for your Windows servers. All were already available for workstations.

MTD for servers

MTD (malicious traffic detection) detects network traffic that indicates that a "command and control" server may be trying to take control of your server. See https://community.sophos.com/kb/en-us/121607

Application control for servers

Application control lets you prevent users from running applications that are unsuitable for the office. See https://community.sophos.com/kb/en-us/63656

File reputation checking for servers

File reputation checking warns users if they’re about to download files with a low reputation (based on frequency of downloading and other factors). See https://community.sophos.com/kb/en-us/121319

July 27, 2016

MTD for Linux

We've added Malicious Traffic Detection (MTD) for Linux servers. MTD monitors network traffic for connections to known bad URLs such as command and control servers, which may be trying to take control of your server. Any malicious traffic can then be blocked and cleaned up. You need the Server Protection Advanced license to use this feature. More about MTD.

July 14, 2016

Peripheral Control for servers

We’ve now released Peripheral Control for Windows servers, which lets you set policies to control access to peripherals. You can also monitor peripherals or exempt individual peripherals from control. This feature mirrors the current Peripheral Control for endpoints and provides extra security for your servers.

July 7, 2016

Sophos Wireless

Sophos Wireless provides a simple, effective way to set up and manage your wireless networks. You manage it from Sophos Central and can either use it on its own or as part of a portfolio of Sophos products. Features in this first release include:

  • A simple dashboard with all key information at a glance.
  • Basic usage visibility.
  • Basic site visualization tool with an option to upload your own floor plans.
  • Scheduled firmware upgrades.

Note: Sophos Wireless can be used with all current AP 15, 55 and 100 Access Point models running the latest firmware (indicated by a Sophos Central ready label on the reverse of the AP and on the packaging).

Learn more

Audit Log

We’ve now added an Audit Log to Sophos Central. This report shows all actions taken by Sophos Central admins and will help IT teams audit admin activity. You can export up to a year’s reports as CSV or PDF. Currently, all admins can access the reports, but access will soon be controlled through admin privileges. Take a look


May 26, 2016

Update Cache enhancements

We’ve enhanced the Update Cache feature so that Windows Servers can update from a local cache. What’s more, the Sophos Central Admin console now lets you see which endpoints update from each cache. More about Update Cache

Web Control for Windows Servers

If you have Sophos Server Protection and appropriate licenses, you can now use Web Control on Windows Servers. This is useful if your end-users can browse the web from a Windows Server, because it lets you restrict access to potentially inappropriate websites. This feature is available in the Server Policy editor. More about Web Control

April 14, 2016

Welcome to the all-new Sophos Central Admin

Sophos Cloud is now Sophos Central! The new Sophos Central Admin console features a streamlined design, enhanced protection, simplified reporting, a robust dashboard and other enhancements. Sophos Central Admin is more powerful and easy to use than ever before.

Click here to watch a short video for more information.

March 1, 2016

Security Heartbeat enabled for all Macs

Security Heartbeat and Potentially Unwanted Application (PUA) detection is now enabled for all Mac endpoints.

February 9, 2016

Web Gateway is now available in the U.K., Ireland, Australia, and New Zealand

Try it now for free to gain more comprehensive web security, including SSL scanning, real-time logging, and in-depth reporting.

Note: Web Gateway is currently only available if your Sophos Cloud account uses U.S. or E.U. (Ireland) data storage.

January 12, 2016

Anti-Virus for vShield now supports per-VM exclusions

We're providing improved control of scanning exclusions for your guest VMs. Previously, exclusions applied to all guest VMs protected by the same Sophos security VM. You can now exclude folders on specific guest VMs. Read more.

January 5, 2016

Support for XP SP2 and Server 2003 SP1 ending soon

We're phasing out support for Windows XP SP2 and Windows Server 2003 SP1. These computers are still fully protected, but aren't getting product updates. You'll see alerts and your users will see "update failed" messages. Read more.

November 26, 2015

Anti-Virus for vShield

We've now released Sophos Anti-Virus for vShield, which lets you protect your virtual environment. Install our central scanner on a host to secure all the guest VMs: it's fast and effective, saves resources and simplifies management. Read more.

November 17, 2015

AD Sync can now filter groups

AD Sync now lets you filter the groups it imports, so that you no longer have to import every group your users belong to. This is in addition to the user filtering we already offer.

Web Gateway now supports Chromebook

Already Use Web Gateway? Add Chromebook devices now from the Sophos Cloud Downloads page.

Not Using Web Gateway? Try it now for free to gain more comprehensive web security, including SSL scanning, real-time logging and in-depth reporting.

Note: Web Gateway is currently only available in the U.S.

October 27, 2015

Web Gateway for iOS

Sophos Cloud Web Gateway now supports iOS devices. If you already use Web Gateway, simply go to Downloads to protect new devices. If you're an existing customer but haven't tried it yet, you can have a free trial: go to Account > Administration and click Add Trial License.

Note: Web Gateway is only available in the U.S.

Update Caching

This new feature enables computers to get their Sophos Cloud updates from a cache on one of your servers, rather than directly from Sophos. This saves you bandwidth, as the updates are now downloaded only once, by the server. To get started, go to Global Settings > Manage Update Cache Servers. Read more.


October 6, 2015

Mobile Security for Android

Sophos Mobile Security scans Android phones and tablets for malicious apps and checks whether the devices are rooted. You can also configure it to detect potentially unwanted or low reputation apps and malicious websites. Read more.

October 1, 2015

Download reputation checking

Download reputation checking will soon be generally available. This new feature checks each download against a Sophos database and warns you if it has a low reputation. Read more

August 27, 2015

Application control

Application control is now generally available. This feature lets you block applications that you think are unsuitable for use in the office. Read more.

If you took part in the beta, thanks. Be aware that application control settings in policies will now apply to all Windows computers, not just computers you added to the beta.

July 29, 2015

Got Sophos Firewall? Try the Security Heartbeat Beta

This new feature enables your computers to send updates about their security health to the Sophos Firewall. The Firewall can then take any action that's needed, such as blocking traffic, depending on its policy settings.

Security Heartbeat also sends alerts to Sophos Cloud if computers might be compromised.

To try it out, go to Account > Beta Programs and join the Beta. Then register your Firewall with Sophos Cloud (you do this at the Firewall console) and go to the Devices page to select computers for the Beta. 

Support for Mac OS X 10.6/10.7 ends soon

From November 1st, 2015, we will no longer support Mac OS X 10.6 and 10.7. Security updates for these Macs may continue for a short time, but when they cease, you'll soon see errors reported in your Sophos Cloud console.

July 22, 2015

Sophos Cloud Web Gateway

This cloud-based gateway protects your network against risky or inappropriate web browsing. It also has extra features that you don’t get with endpoint-based web protection. For example, it can:

  • Prevent loss of confidential data.
  • Report on all your users’ web browsing (not just web pages that trigger warnings or are blocked).

You’ll need a license upgrade. To find out more, click here.

July 7, 2015

The latest Sophos Cloud beta program lets you try out these new features:

Application Control 

This new feature lets you block applications that are not a security threat but that you think are unsuitable for use in the office. Read more

Download reputation checking

This new feature checks each download against a Sophos database and warns you if it has a low reputation. Read more

To join the beta program, head to the Account > Beta Programs page.

June 25, 2015

Protection for Linux

You can now protect your Linux computers with a Sophos Cloud download (just as you do for Windows and Mac OS X). See the Downloads page.

Phone and camera blocking

You can now prevent users from connecting most phones, cameras and media players to workplace computers. Just go to your peripheral control settings and block the MTP/PTP category. Read more

June 4, 2015

Better status reporting for users and devices

We've made it easy to see the security status of users or devices at a glance. An icon (green, amber or red) next to each of them shows you their security health, and you can click the icon for details. Take a look at your Users and Devices lists.

“Locate” feature for mobiles

You can now locate any user’s mobile device and see its location on Google Maps. For this to work, users must have “Locate” enabled on their devices (you can use a compliance rule to ensure this). To try this feature, click on a mobile in your list and look for the Locate button.

May 12, 2015

Server Lockdown

Server lockdown is now released. This allows you to prevent unauthorized changes to the software on your servers but automatically allows the updates you need. And it does it without asking you to set up complicated rules. You will be able to upgrade your license soon. You can lock down your servers right away: on the Servers page, click on a server to open its details and look for Lock Down.


The Sophos Cloud console now comes in French, German, Spanish or Japanese, as well as English. Want to change the language? Go to the bottom of the console and click the arrow beside the Language setting.

April 21, 2015

We've made improvements in alerts and reminders.

Better email alerts

Our email alerts now show the name and location of threats detected on the network. They also include a "What to do" section to help you take action.

License reminders

You will now get email reminders when your license is due for renewal.

April 8, 2015

Improved Active Directory synchronization

We've improved the Active Directory synchronization utility. A new, easy-to-use setup dialog now lets you:

  • Import users from multiple Active Directory domains.
  • Use filters to import only the users and groups you want.
  • Preview what will be imported before you go ahead.
  • Have users and groups deleted from Cloud automatically if they are deleted from Active Directory.

March 2, 2015

Server Lockdown beta

If you have a Server Protection license, you can now try out our new Server Lockdown feature. This prevents unauthorized changes to the software on your servers but automatically allows the updates you need. To take part in the beta program, head over to the Account > Beta Programs page to sign up.

February 19, 2015

Secure OS for AWS

You can now manage Sophos Secure OS for AWS directly from Sophos Cloud. All you need to do is register your Secure OS instance with Sophos Cloud. For more information, see the Downloads page.


November 18, 2014

Server Protection

Our Server Protection feature is now generally available. This feature:

  • Manages Windows servers separately from endpoint computers.
  • Lets you apply security policies to a particular server or servers, no matter who logs on.
  • Automatically recognizes certain common server applications, so you don’t need to set complicated scanning exclusions.

To get started, install the new feature on servers. Here’s how.

Got servers still protected with the old software? Do this:

Find each server in Users & Devices > Devices. Click the server name to see its details page. Click the Upgrade to Server button in the upper right of the page.

Got new or unprotected servers? Do this: 

Go to Downloads > Installers, get the server installer and run it on each server.

Got servers protected with the beta software? 

There’s no more to do, unless you have other servers that weren’t included in the beta program.

Authorize Potentially Unwanted Applications (PUAs)

We’ve made it quicker and easier to handle PUAs.  If Sophos Cloud detects a PUA that you want to let all users have, just select the alert in the Action Center and click Authorize PUA(s) .

You can still use policies if you want to authorize PUAs only for specific users or servers.


November 4, 2014

Who moved my pages?

We’ve moved or renamed some pages to make Sophos Cloud easier to use.

There’s a new Global Settings menu for settings that apply on all computers. We’ve moved two pages to this new menu:

  • Tamper Protection.
  • Web Control Customizations (which used to be called the Websites list).

If you’re a beta customer, you’ll also see a new page there:

  • Scanning Exclusions. This lets you exclude files from scanning on all computers (but you can still use policies to set exclusions only for specific users or servers).

Authorize Potentially Unwanted Applications (PUAs)

If you’re a beta customer, you can try our improved handling of PUAs.  If Sophos Cloud detects a PUA that you want to let all users have, just select the alert in the Action Center and click Authorize PUA(s) .

You can still use policies if you want to authorize PUAs only for specific users or servers.

October 15, 2014

Server Protection beta

You can now sign up for the Cloud version 3 beta program and try our new Server Protection features.

Server Protection lets you:

  • Manage your Windows servers separately from your other computers.
  • Set up security policies that apply to a specific server, no matter which user is logged on.

You don’t even need to worry about excluding Microsoft Exchange, Active Directory and Microsoft SQL Server from scanning, as we do that automatically. Sophos Cloud will work on your servers "out of the box".

To join the beta, head on over to the Accounts > Beta Programs page.

September 25, 2014

We'll phase in all these new features and enhancements over the next few weeks: 

Even easier protection

You'll be able to add users and get their devices protected all on the same page.

The improved Users & Devices > Users page will let you send startup links to new or existing users, so that they can install Sophos software on their computers or mobiles. You'll no longer need to visit a separate Email Deployment page.

Cleanup for PUAs

If Sophos Cloud detects Potentially Unwanted Applications (PUAs) on computers, you'll be able to clean them up from the Dashboard in most cases. Just look out for the Cleanup PUA button that appears in the Action Center pane when you need it. This feature is available for all customers right now.

Scan now

You'll be able to scan any computer for threats immediately. On the Users & Devices > Devices page, you'll be able to click on a computer name to open its details page and then click the Scan now button. Any alerts will show up in the Action Center as usual.

Improved Events page

The Reports > Events page will have a clearer layout and let you customize your events list to show any combination of event types you want. 

Coming soon:  Server Protection beta

You’ll soon be able to try out our beta software for Windows servers. This lets you manage servers separately from other computers and apply security policies that are specific to a server, no matter which user is logged on. You don’t even need to worry about excluding Microsoft Exchange, Active Directory and Microsoft SQL Server from scanning, as we do that automatically. Sophos Cloud will work on your servers “out of the box”.


September 2, 2014

Mobile Control for Android

We've now added Mobile Control for Android devices. This gives you the same control and protection features that you already enjoy for iOS:

  • Protect data on lost or stolen devices by locking or wiping them.
  • Configure the device's password, email and Wi-Fi settings. (Email settings are available for Android only on Samsung devices with SAFE v2 or later.)
  • Restrict the features that can be used on the device.
  • See all devices that can access your corporate data.
  • Check that devices comply with your company's security rules.