Customer Controls

Multi-Factor Authentication (MFA)

MFA can be enabled for all administrators of a Sophos Central account, a subset of administrators, or disabled completely. We strongly recommend the use of MFA to ensure that, in the event of credentials becoming compromised, Sophos Central account access is not possible.

Role-Based Administration

A number of pre-defined administrative roles can be assigned to admins that can restrict access to sensitive log data as well as restrict them from making changes to settings and configurations.