Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Replies 5 replies
  • Answers 1 answer
  • Subscribers 41 subscribers
  • Views 1444 views
  • Users 0 members are here
Options
Suggested

Sophos XG Home V21 GA Lets Encrypt Certs not shown for Administration

Frank Jepsen

I successfully obtained 5 certificates from Lets Encrypt with th new V21 feature.

I can use these in my web application firewall rules and they work fine.

But in "Administration/Admin console and end-user interaction" only an uploaded wildcard certificate which I used before and the ApplianceCertificate are shown and are selectable.

How can I make the Lets Encrypt.certificates shown?



Added TAGs
[edited by: Erick Jan at 11:54 PM (GMT -7) on 30 Oct 2024]
Parents Reply Children
  • 0 in reply to HiFish_ch

    I think in 2021 I added the "ISRG Root X1" certificate manually because X3 was expiring.

    I added it with spaces in the name which caused no problem with my self made root cert but the new Lets Encrypt technology from Sophos depends on naming it with underscores (ISRG_Root_X1) as it seems.

    Janos replaced the root cert and added the missing root id in my user defined certs in the DB.

    So perhaps look if have the Lets Encrypt root certs correctly named and then recreate the user certs.

    Or let Janos help you.

  • 0 in reply to Frank Jepsen

    Thanks Frank for Sharing your Solution.

    Daniel from Sophos Support helped me solving my Problem. In my Case the System-Time of the Firewall was behind about two days. So from the standpoint of the firewall the NotBefore-Date on freshly issued Let's Encrypt Certificates was in the future.

    Enabling NTP Time-Sync solved the Problem instantly.

Unfiltered HTML