Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 0 subscribers
  • Views 32634 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Web Appliance - Feature requests

RL

Hi,

Firstly I'd like to say that the Sophos Web Appliance is a great product. So good work guys. However with anything there is room for improvement. Something ITIL will label as CSI. (Continual Service Improvement).

So knowing that Sophos are very good at listening, but there is no feature request channel for the Web Appliance as yet, I thought I'd air my requests here...

1. More granular RBAC. - Currently one needs to be given 'Full Access Administrator' rights to amend the 'Authentication > Profiles', and / or 'Connection Profiles'.

We often need to allow an admin to add a User Agent string / Application, Device, or a destination URL because the calling application does not support proxy authentication.

However I don't want the admin to have the rights to change Administrators.

So it's the usual all or nothing approach.

2. AD integrated RBAC. Do I really need to explain the need for this?! ;) It's lacking in a lot of Sophos products.

3. A LOT more detailed reporting / diagnostics is required when internet access is blocked. For example I noticed that requests to various URL's from an IP address was being blocked to various destinations. All the Sophos Web Appliance could tell me is that it was blocked. (Not helpful!)

However when I forced the users traffic to go via our ISA / TMG server then I could quickly ascertain that a certain application with a user agent string was hitting the proxy and not supplying credentials.

In order to get this information from Sophos I understand that Sophos technical support would need to SSH to our device and then search through the logs.

This is not very helpful, and a LOT more work has to be done on the logging / reporting to determine WHY something is blocked. Reporting that it is blocked because of a policy isn't detailed enough.

4. The ability to exclude destinations from being sent to the Web Appliance when using End Point Control integration. E.g. Like you can put exclusions in the proxy list of a browser.

Thanks for listening.

John

P.S. Question - when a customer has both proxy integration AND End Point Control integration enabled what happens to the traffic requests?

:42398


This thread was automatically locked due to age.
Parents Reply Children
No Data
Unfiltered HTML