When I go to edit the certificate and upload the certificate which is due for renewal ( every 13 months ), it fails with the following error at the top center of the screen:
Certificate could not be updated as it is already used by HTTP Based Policy
Firmware: (SFOS 20.0.1 MR-1-Build342)
I have 40+ WAF rules managing multiple domains.
1. Go to certificates
2. Add new certificates with different name as it doesn't allow updating same certificate
3. Then go to WAF rules one by one ( 1....40+ ), change new certificates update FQDN isn't this annoying ?????
4. Its been 5 Years I have been using Sophos XG literally fed up with repeated task
Its even costing me with downtime.
Its been issue over 8+ years still Sophos not addressed see below:
Certificate renewal fails if used in web server protection rule
Certificate could not be updated as it is already used by HTTP Based Policy
I raised support ticket as of 2024-07-26 Sophos doesn't feasible solution. ( Case Number: 07455429 )
I see below paths hold certificate & private key, its a job of replacement of file & restart of WAF still Sophos developers didn't consider to implement over UI over 8+ years!!! can't they simplify ???
/conf/certificate/ /conf/certificate/private/
This thread was automatically locked due to age.