CA WebConsole not secure / https

Question

Dear collegues! 
 When we access the Webconsole through the internal network https://xxx.xxx.xxx.xxx:port, the browser recognizes the certificate for https access as not secure. We are using the default Sophos certificate. How should I fix this problem? Note: we only provide internal access to the WebConsole for administration.

Bharat J · Answer

Hi Bruno H Silva , 
 Please try the link Sophos Firewall: Insecure connection to the webadmin 
 Thanks and Regards

DevK · Answer

Cause 
 By default, the webadmin configuration uses the hostname-based certificate while the web admin and captive portal authentication pages are being accessed. The locally-signed certificate can be generated in the firewall and used to remove the certificate errors for accessing the web admin and captive portal. After generating the locally-signed certificate in the firewall, the certificate can be downloaded to a computer and imported as a trusted root certificate. 
 Resolution 
 
 Generate a locally-signed certificate . 
 Browse and apply your newly created certificate . 
 Open Microsoft Management Console (MMC) and see if the certificate is installed in Trusted Root Certification Authorities > Certificates . The webadmin and captive portal pages still show the "not secure" error. 
 Download your default certificate. Its name is local_certificate_authority.tar.gz 
 Extract the file and import Default.der to MMC. 
 Close and open the browser once the certificate has been trusted as a root certificate. The "not secure" error should no longer show when you click the lock icon in the address bar of your webadmin or captive portal pages.

CA WebConsole not secure / https

Top Replies