Skip to content

Settings

Go to Settings > Advanced to change the following:

  • Report Settings
  • User Alerts: Allowed IPs
  • Traffic Alerts: Custom IoCs
  • XDR Data Lake Uploads
  • Automatic Agent Removal

Restriction

You might not see some options if you don't have the required licences.

Report Settings

You can set up the following features:

  • Weekly Summary Report: Control the users who receive this report.
  • Compliance Reports: Select the content to include.
  • Co-branding: Add a logo to use with Sophos Cloud Optix PDF reports.

User Alerts: Allowed IPs

Create and manage a list of IP addresses that can access your cloud environment without causing alerts.

You can add individual addresses and ranges, or import lists. You can download a sample import file and export the list.

Traffic Alerts: Custom IoCs

You can create a list of IP addresses to receive alerts if you have your own source of indicators of compromise (IoCs). When outbound traffic is seen in your selected environments, alerts are sent to your IoCs.

You can add individual addresses and ranges, or import lists. You can download a sample import file and export the list.

XDR Data Lake Uploads

If you have a licence that includes XDR, Sophos Cloud Optix can send security data to the Sophos Data Lake. You can then include it in searches with Sophos Extended Detection and Response (XDR).

You manage uploads to the Data Lake. You can turn uploads on or off, and select which environments upload data.

Automatic Agent Removal

When you terminate AWS EC2 instances or Azure VMs, Sophos Cloud Optix can request the removal of any associated server and agent information from your Sophos Central account.

You can turn this option on or off.

See Automatic agent removal for terminated instances.