Skip to content

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/central/customer/help/en-us/index.html?contextId=products-dashboard

Central Overview dashboard

The Central Overview dashboard is the default start page of Sophos Central and lets you see the most important information at a glance.

To open it at any time, go to Dashboards > Central Overview.

The Dashboard consists of these areas.

Most Recent Alerts

Most Recent Alerts shows the latest few alerts. Informational alerts are for information only and don't require you to take action.

Click View All Alerts to see all alerts.

Account Health Check

Account Health Check shows your account health, based on whether your devices and policies use recommended, secure settings.

The health summary shows your overall health score, how it compares with other organizations, and how it's trending. The summary also shows your scores for specific security features.

Click Go to Account Health Check for more details. See Health check scores to understand your scores.

Devices and users: summary

Devices and users: summary shows details of usage and protection for users or protected devices. It also shows the number of unprotected users or devices.

Click on the tabs to see information for each device type or for users.

Click See Report to open a detailed report for the tab you have selected.

Email Security

The Email Security widget shows a summary of your email activity over the last 30 days. The widget uses color-coded arrows to break down inbound and outbound messages by category.

If you have domains connected through both Sophos Gateway and Sophos Mailflow, you see a separate panel for each connection type. You can switch between Gateway and Mailflow views using the toggle. The message categories remain the same for each type.

You can take the following actions with the widget:

  • Hover over the arrows bar chart to see the number of messages in each category.
  • Select or deselect categories in the legend to filter the arrow bar chart.
  • Click a category in the legend to open the Message Summary report filtered by that category.
  • Click See Report to open the full Message Summary report and review all processed messages. See Message Summary report.

Inbound Activity Summary

The Inbound Activity Summary widget shows information about the following message categories. The list reflects the order in which the scans take place.

  • Realtime blocked: Messages from blocked sending IP addresses.
  • Enterprise blocked: Messages sent from an address already added to the enterprise blocklist (Inbound Allow/Block).
  • Malware: Messages containing known malware.
  • Unscannable: Messages we couldn't scan for threats.
  • Intelix threat: Messages identified as threats by SophosLabs' Intelix service.
  • URL/QR Code: Messages containing malicious URLs or QR codes linked to unsafe or criminal websites.
  • Impersonation: Messages that fail Impersonation Protection checks.
  • Spam: Messages containing known spam characteristics.
  • Bulk: Newsletters, mailing lists, and other forms of solicited email.
  • Authentication failure: Messages that failed authentication DMARC, SPF, or DKIM checks.
  • Data control: Messages that violated Data Control policies.
  • Legitimate: Messages classified as clean and therefore delivered.

Outbound Activity Summary

The Outbound Activity Summary widget shows information about the following message categories. The list reflects the order in which the scans take place.

  • Malware: Messages containing known malware.
  • Spam: Messages classified as spam.
  • Data control: Messages that violated Data Control policies.
  • Secure message: Messages secured by TLS, S/MIME, Push Encryption, or Portal Encryption.
  • Legitimate: Messages classified as clean and therefore sent.

Web control

Web control shows statistics for your Web Control protection.

The figures are for threats blocked, policy violations blocked, and policy warnings. There is also a figure for "policy warnings proceeded", which is the number of users who have bypassed a warning to visit a website.

Click on a figure to open a detailed report.