Hello everyone,
I am a former user of Sophos UTM & XG but used a different solution as the XG was kind of complicated in the beginning (too much & too complex firewall rules needed to migrate on my side).
Recently I decided to give Sophos XG another try and installed a Home licensed version of it on one of my Proxmox hypervisor.
So far it looks far better then what I have in my mind - great job to you guys & girls!!
I also recognised that Sophos XG now supports Let's Encrypt certificates but unfortunatley only via the HTTP-challenge.
On my reverse proxy I only run DNS-based challenges. For the time being I uploaded a valid certificate manually to Sophos.
Is it in general possible to upload valid certificates via an API call and restart the necessary Sophos services so they reflect the new certificate (mainly Sophos itself and probably SMTP (need to think if I migrate my current solution to Sophos))?
Quote