Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XGS136 admin console from LAN application certificate.


What am I doing wrong? 

I have been administrating a new XGS 136 firewall and for some reason accessing the admin console on the LAN side has always reported the https certificate as not valid despite the fact the ApplianceCertificate is trusted. 

Is there something I need to do to get my browser to recognise the fact that it is valid? I am the only one who accesses the admin console and only ever from the LAN side on the same PC. 


This thread was automatically locked due to age.
  • Hello Damien,

    Thank you for contacting the Sophos Community.

    You need to install the certificate on the computer you’re using to access it, and you need to access it via FQDN, not via IP.

    Take a look at this KB.


    Emmanuel (EmmoSophos)
    Technical Team Lead, Global Community Support
    Sophos Support VideosProduct Documentation  |  @SophosSupport  | Sign up for SMS Alerts
    If a post solves your question use the 'Verify Answer' link.
  • You need to download the default CA form the firewall which was used to generate this self-signed certificate when initially installing the firewall.

    To do this, go here:

    Then import this as "Trusted root CA" in your browser.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.