This blog post will list the main changes in our product documentation and knowledge base.
Table of Contents
Sophos Firewall
Updated
- WAN link load balancing and session persistence
- 19.0
- 18.5
- 18.0
Sophos Central
Resolved advisories
- KB-000043979 RESOLVED Advisory: Sophos Central Email Outbound delay up to 30 minutes or more
- KB-000044021 RESOLVED Advisory: Sophos Central Email Inbound delay up to 30 minutes or more
- KB-000044040 RESOLVED Advisory: Sophos Central Partner Dashboard - Partners cannot sign in to Central Partner Dashboard
- KB-000044018 RESOLVED Advisory: Customers experiencing ADsync utility / Azure AD sync failure alerts in Sophos Central
- KB-000044046 RESOLVED Advisory: Customers are unable to create trials on Sophos Central Web (different than Sophos Central Partner Dashboard)
- KB-000044043 RESOLVED Advisory: Sophos Central - General Issue with auto-renewals and license activation
Central Admin dashboard
New
- Hybrid directory services
- You can now use both Active Directory and Azure AD at the same time.
https://docs.sophos.com/central/Customer/help/en-us/PeopleAndDevices/DirectoryService/ (and subsequent pages)
- You can now use both Active Directory and Azure AD at the same time.
- Restart event
- Added information on restart events and how we handle restarts.
https://docs.sophos.com/central/Customer/help/en-us/PeopleAndDevices/Devices/Computers/ComputersRestart/
https://docs.sophos.com/central/Customer/help/en-us/PeopleAndDevices/Devices/Servers/ServersRestart/
- Added information on restart events and how we handle restarts.
- Account health checks
- New article regarding expected behavior with Threat Graphs
- A new KBA that lists the different causes of license allocation issues that may arise after renewal or license change and the steps to resolve them
Updated
- Domains and Ports
- Added ports and domains for new data centers in India and Brazil.
https://docs.sophos.com/central/Customer/help/en-us/PeopleAndDevices/ProtectDevices
- Added ports and domains for new data centers in India and Brazil.
- Exploit mitigations exclusions
- Live Discover/Third-party integrations
- Data lake uploads for Microsoft 365 audit logs is now generally available. Third party integration help call is redirected here for now as this is the only integration available.
https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/Overview/ThreatAnalysisCenter/LiveDiscover/DataLakeUploads/
- Data lake uploads for Microsoft 365 audit logs is now generally available. Third party integration help call is redirected here for now as this is the only integration available.
- SSL/TLS decryption of HTTPS websites
-
Added information on why some webpages are blocked automatically by Sophos and browsers. Added information on how to ensure decryption works correctly with Firefox.
https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/Overview/GlobalSettings/DecryptHTTPS/index.html
-
- KBA updated to make it dashboard agnostic - adding behavior can be seen in cdb and pdb at bottom, as well as the initial intent of edb master for the first two points
- Forensic snapshots
- Information on why PDF, flash and .exe file are blocked updated to reflect the steps in Sophos Central
Central Partner/Central Enterprise
Updated
- Added exclusions using Detection IDs
Endpoint - Windows and Mac
Ongoing advisories
- KB-000044041 Advisory: Sophos Central Endpoint - Issues with Cypress automation tool caused by Modern Web
- KB-000044047 Advisory: Sophos Central Endpoint - Issues with Pegasus Opera3 web application caused by Modern Web
New
- A new troubleshooting KBA to fix an installation issue on Windows endpoints where Windows Security Center service is turned off or is malfunctioning
- New KBA regarding Mac installer process change
Updated
- Changed wording for location, due to MacOS 12.4 restrictions
Endpoint - Unix and Linux
Updated
- Updated the SAV v9 and SAV v10 (central managed) retirement dates for Red Hat Enterprise Linux 7 – Server and SAV v10 (central managed) retirement date for Red Hat Enterprise Linux 8 - Server
Sophos Email
Updated
- Enhancements to Email Security Policy help
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/EmailSecurityPolicy/
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/EmailSecurityPolicy/
- Corrections to Email security
- Updated Email History Report help
- Updated gateway information for Japan, Australia, Canada
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/Configure365/#restrict-delivery-to-sophos-ip-addresses
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/OutboundM365/updatingspf/#sophos-spf-domains
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/ConfigureGSuite/#restrict-delivery-to-sophos-ip-addresses
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/configureoutboundgoogle/#sophos-spf-domains
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/ConfigureExchange/#restrict-delivery-to-sophos-ip-addresses
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/settingupsmtp/#sophos-spf-domains
- Update email gateway IPs for new CIDRs
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/Configure365/#restrict-delivery-to-sophos-ip-addresses
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/ConfigureGSuite/#restrict-delivery-to-sophos-ip-addresses
- https://docs.sophos.com/central/Customer/help/en-us/ManageYourProducts/EmailSecurity/SophosGateway/ExternalServices/ConfigureExchange/#restrict-delivery-to-sophos-ip-addresses
- Added information that the External, Yellow Smart Banner will also appear if the sender does not have DMARC, DKIM, and SPF checks
- The article was updated to indicate Smart Banners as the preferred method for submitting samples to Sophos Labs. The section Use Message History to submit spam was also updated. The sections Collect and submit samples for false-positive spam messages and Collect and submit samples for false-negative spam/virus emails were removed
Mobile
Updated
- Information regarding turning off ciphers for Sophos Mobile Standalone EAS Proxy added.
ESH/SURF
New
- New KBA for the coming update to ESH in the Central 2022.1 release
Updated
- Added ESH Network test information to remind the user to check for any communication issues before going through the steps
- Updated KBAs for the coming update to ESH in the Central 2022.1 release
- KB-000043646 Sophos Endpoint Self Help: Packet capture
- KB-000043623 Sophos Endpoint Self Help: ZTNA
- KB-000042281 Sophos Endpoint Self Help: Product Logging
- KB-000036448 Sophos Endpoint Self Help: Frequently Asked Questions (FAQs)
- KB-000036736 Sophos Endpoint Self Help - Server
- KB-000036449 Sophos Endpoint Self Help: Update
Phish Threat
Updated
- Enhanced create campaign instructions
Other
Updated
- Updated to indicate Smart Banners as the preferred method for submitting samples to Sophos Labs. The sections Use Message History to submit spam and Use Sophos Outlook Add-in were also updated.