I just tried to manage a Sophos XGS116 with the OTP token. But it wont give me the expected popup in the Sophos Central portal according to the article Use OTP to turn on Central management - Sophos (XG) Firewall
If i enter the serial number it gives me the following tekst: If your firewall is already deployed and configured, you can join it to Sophos Central for management from your Firewall WebAdmin. Please note that a firewall can be managed at any point of time either via Sophos Central or Sophos Firewall Manager (SFM).
So i'm not able to create a OTP token for the firewall.
Is there something i'm doing wrong?
This should the process. Could be currently still disabled in Central itself, i would recommend to try this tomorrow, if the process will be shown.
Here you can see the process: https://www.youtube.com/watch?v=Gkxg9nRy1dQ
If it is indeed a certificate issue, your endpoints need access to the internet and a DNS server to be able to update their certificate. This is the problem for us, because without a heartbeat, our endpoints are blocked on our network, so they can't update the certificate. I have to change our firewall rules so they can get the certificate and then they got there Heartbeats and I could change the firewall rules back.
Not sure if you have the same sort of setup so I don't know if this will help you resolve your issue.
I'm also seeing higher but nowhere near as dramatic as you. Previously averaging 4-5%, today it has been averaging at 7%. This is on my home XG which is totally over-specced. Will have to watch this when we start updating customer sites as they currently average between 20 and 40%.
Mine has increased significantly, prior to upgrade around 5%, after upgrade 7-18%,currently shows 12%. A well spec'ed home system.
Edit:- added pretty picture of the issue.
XG115W - v19.5.3 mr-3 - Home
If a post solves your question please use the 'Verify Answer' button.