Sophos Central Endpoint and SEC: Computers fail/hang on boot after the Microsoft Windows April 9, 2019 update. Please follow knowledge base article 133945

Learn about the Benefits of Multi-Factor Authentication (MFA). Turn your MFA on now!

Outage on MySophos and Partner Portal. You may contact Sophos Support through Phone.

WAF not allowing wildcard certificate for HTTPS firewall rule

I have several web servers on my network.

Until now I have provisioned a LetsEncrypt ssl cert for each sub domain:

  • ...

Now I have so many servers that its an extensive process to renew all of the certificates individually every two months.

I obtained a wildcard certificate * and would like to use that, but when using that certificate in a Business Application Rule for my webservers, I get this message:

"The following domains in the HTTPS certificate "" are invalid and have been removed: 1. *"

Am I doing something wrong, or does XG not support wildcard certificates for my purpose?

  • So, it turns out that everything is fine.

    I did get the above error, however I suddently got the option to input a domain of my choice in the text box and is correctly verified with the wildcard domain.