I have a single XGS (XGS87) and a single AP (APX320), so I'd avoided Sophos Central management of the firewall since I saw no real advantage in such a small deployment. But I recently switched the firewall to Sophos Central management to allow me to make changes, if necessary, when I'm remote. (Best practice is not to allow Admin access from a VPN, and I also ran into technical issues trying to do the non-best practice.)
Recently, I've done a little reading on Sophos Central management of APs, and it seems like there are some additional features there (compared to managing from the XGS), but I'm wondering how much of a barrier there is to this administration switch. Can you just delete the AP from the XGS, power cycle it, and register it with Sophos Central and everything works exactly the same with no other XGS configuration/modification?
That is, I can currently see on the XGS a "wlan1", "wlan2", etc, that are associated with my SSIDs, and "wlan1" is bridged with a physical port so that an internal server is directly accessible. This bridged is one Zone, while the two other SSIDs are in another zone, with appropriately different firewall rules.
Are these "wlan1", "wlan2" actually VLANs and does both the XGS and AP remember them, so it all just works after the switchover, or do I also have to delete/recreate things in the XGS as if the AP were brand new and I'm starting from scratch?
(And is it a bad idea to switch an AP to Sophos Central management if I only have one? There seem to be new features there, but it also would mean that if internet connectivity is down I couldn't manage the AP.)
This thread was automatically locked due to age.