Are there any plans on the roadmap to expose (possibly read-only) data about individual protection policies for each tenant?
Things like scheduled scan date, per-policy exclusions, computer/group scoping, etc.
Hello Trevor and Skylar, I can shed some light on our plans for policy based APIs. If I were to classify the requests here, it looks like we have two requests.
I'm sorry but I am not sure what you are requesting here. Are you asking for an API path where you give a TenantID and get back all the policies that have been created in that tenant with a list of machines it is assigned to?
Right now, you can pull out the policy information on a per machine basis with the paths in the Endpoint API. Is that the information you are looking for?
Program Manager, Support Readiness | CISSP | Sophos Technical SupportSupport Videos | Product Documentation | @SophosSupport | Sign up for SMS AlertsIf a post solves your question use the 'Verify Answer' link.
I am looking more for endpoints that can detail settings in the various protection policies stored in the official Central Dashboard.
An example of the data I'm looking to get is the scheduled regular scan date per Endpoint Protection and Server Protection policy.I'd also like to be able to retrieve data on the various settings toggles for specific policies
Something like... "Does policy A and B but not Policy C have Deep Learning enabled?" or"Are there any policies that would be considered not configured properly?" via semi-regularly scraping the policy data and comparing it to known defaults.The current endpoint APIs do a really good job with the broad strokes, but some of the reporting I'd like to do requires details that as far as I can tell are not yet available from the current API.
Bumping this since its been almost two weeks since I responded.
Hi Trevor, Unfortunately policy retrieval is not currently possible in our Central API. I am not sure on an ETA for it in the future either.
Thank you for the update.If its possible to pass it to the relevant folks, some sort of read-only reporting on stuff like policies would be a "nice to have" feature. In the meantime I'll mark the above as the verified answer.
It is my pleasure. Do you mind submitting a feature request at our link here with this idea? https://www.sophos.com/support/feature-requests.aspx
I have brought this to the attention of the Product Manager
Thank you. Would it also make sense for me to file this as a feature request at the link SkylarMelo gave?
yes, that is the official channel.
Above is the feature request I entered this afternoon. Hopefully it will help get some traction on the idea.