• Sophos XG API Unable to List Rules

    Lior Dahan1
    Lior Dahan1
    Hello, When I try to list Security Policy objects (I'm on v1702) with GET Security Policies, I get the error 'Transaction fail' only when I have Rule Group inside it My request is this: <Request APIVersion="1702.1"><Login><Username>xxxxxx</Username…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG Firewall API - Add Host Group

    Lior Dahan1
    Lior Dahan1
    Hello, We are tying to send this GET message to the API: <Request APIVersion="1702.1"><Login><Username>xxxx</Username><Password>xxxx</Password></Login><Set operation="add"><IPHostGroup><Name>group1</Name><IPFamily>IPv6</IPFamily><Description>xyz</Description…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • API Add FirewallRule Problem

    Lior Dahan1
    Lior Dahan1
    Hello, I'm using Sophos Firewall - API version 1702.1 When I'm trying to send an API request to add a rule to the firewall I get the following error: Configuration parameters validation failed. for the following reason: /FirewallRule/SourceZone But…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • Missing Logs from the API endpoint

    Ravi Polepeddi
    Ravi Polepeddi
    Hi, We continuously query Sophos Central API endpoints for alerts, events on a 5 minute basis. We've noticed that there are missing logs every day. The next cursor that is returned in every response is used in the next request to query for new data…
    • over 4 years ago
    • Sophos Central API
    • Discussions
  • API - Detected Exploits

    Lior Dahan1
    Lior Dahan1
    Hey again! I'm developing an integration between Sophos Central (Endpoint Protection) and another service, and one of the API endpoints I go to is the detected exploits one. I am able to access the endpoint for listing and getting a single object…
    • over 4 years ago
    • Sophos Endpoint
    • Discussions
  • Get wireless clients via API

    dtconnect
    dtconnect
    Hello, according to the API docs, there is get /objects/awe/client/ Implementation Notes: Returns all available awe/client objects However this does not seem to work for me on multiple SG devices. The request always results in an empty list. Is…
    • over 4 years ago
    • UTM Firewall
    • Management, Networking, Logging and Reporting
  • API Mass Query

    Evron Davis
    Evron Davis
    Hello, I am currently attempting to query all machines in Sophos Central via API. However there seems to be a max limit of ~500 items. Is there any way around this max limit or any other way to query all endpoints. Any input would be great.
    • over 4 years ago
    • Sophos Central API
    • Discussions
  • Unable to disable WAF rule via API

    George Sainsbury
    George Sainsbury
    I am trying to make changes to a WAF rule via the API. This is all in relation to a larger effort to automate Let's Encrypt renewals. I have ready many posts on here and found a few smaller github repos with examples but none of them get the entire workflow…
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • API - Get Firmware Version

    Andrew Bryson
    Andrew Bryson
    Hi everyone - basic question, is it possible to get the current version # through an API call to Sophos XG? I'm looking through the API documentation, and I don't see it.
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • XG API: How to get data?

    dtconnect
    dtconnect
    Hello, I'd like to automate some tasks with my XG like adding or deleting Web Filter Exceptions via API. This works but after or before modifying the exceptions, I'd like to get a list of all the exceptions that are already present (including the actual…
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • API Rule Group Endpoint

    Lior Dahan
    Lior Dahan
    I've been working with the Sophos XG Firewall XML API and so far I've been unable to access the firewall rule group endpoint that is defined in the docs. My request xmlreq parameter looks like this: <Request> <Login> <Username>admin</Username> <Password…
    • Answered
    • over 4 years ago
    • Sophos Firewall
    • Discussions
  • How do you configure Windows Task Scheduler for the Sophos Central SIEM Integration Script

    serenity_now
    serenity_now
    Hello, I looking for some assistance on configuring the Sophos Central python based SIEM integration script with the Windows Task Scheduler. If I run the script manually I can get it execute perfectly fine but I'm having the hardest time getting it…
    • over 4 years ago
    • Sophos Endpoint
    • Discussions
  • No API credentials on trial account

    Lior Dahan
    Lior Dahan
    I've recently created a 30-day Sophos Central trial account in order to test the API functionality, but when I followed the API configuration process there was no option to create API credentials necessary for operations. I noticed an older discussion…
    • Answered
    • over 4 years ago
    • Sophos Endpoint
    • Discussions
  • Report integration tool

    mariano doque
    mariano doque
    Hello, I am a sophos partner and one of my potential clients is consulting me if you can integrate sophos reports with an external tool. I was reading several links of the community and several KB. Try the Python script but still not much information…
    • Answered
    • over 6 years ago
    • Sophos Endpoint
    • Discussions
  • How to get the neighbour (ARP) cache using the REST API?

    Adrián Fernández
    Adrián Fernández
    Im trying to use the REST API to get the current ARP cache entries. According to the API Documentation there should be "Get Dynamic Neighbour Entries" operation but I couldn't find any way to execute this request.
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • sophos XG home edition API support

    mesut
    mesut
    Hi, the title is clear, does it have API support? according the documentation, https://<Sophos IP>:<port>/webconsole/APIController?reqxml=<Add the XML request here> this should work, but i get 404 .
    • Answered
    • over 6 years ago
    • Free Tools
    • Discussions
  • Sophos XG Firewall: How to use API to import web exceptions

    Barb@Sophos
    Barb@Sophos
    Hi all, This article describes the steps to import web exceptions using the Sophos XG API. Please find more info here. Regards,
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Sophos XG Firewall: How to use API

    Barb@Sophos
    Barb@Sophos
    Hi all, This article describes the steps how to use Sophos XG Firewall's API. Please find more information here. Regards,
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Sophos for Home Premium Feature Request

    Brian Tate
    Brian Tate
    Team, I need an API that is accessible for this solution. It doesn't make sense to pay for something that is not an EDR (Sophos Cloud has Intercept X) nor has mobile protection, nor has any enterprise or search functions via Yara, OpenIOC or STIX…
    • over 6 years ago
    • Free Tools
    • Discussions
  • How can I get the RED remote IP via REST API?

    darkwind
    darkwind
    Hi, I need to find out how a RED device is connected to the UTM. I want to know whether the RED uses its WAN interface or its USB stick connection via LTE/UMTS/GSM etc. Is there a way to determine this via the REST API or any other way? I don't want…
    • over 6 years ago
    • UTM Firewall
    • Remote Ethernet Device (RED)
  • Create FIrewall Policy - HTTPBased response 501

    Luke Milby
    Luke Milby
    Hi All! Im working with the Sophos XG 1700.1 API looking to create an HTTPBased Firewall policy. I seem to be running into an issue when making the request. response from the request: <?xml version="1.0" encoding="UTF-8"?>\n<Response APIVersion="1700…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Restart VPN with API

    Joe Plunkett
    Joe Plunkett
    I am trying to restart a vpn connection using the xg API So far I have come up with this xml syntax: <Set operation="update"> <!-- Activate the vpn connection --> <VPNIPSecConnection> <Connection> <Name>TunnelName</Name> </Connection> </VPNIPSecConnection…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • Sophos Central API to get Status

    Chris Harland
    Chris Harland
    Are there any API calls I can make that would retrieve asset status. I'd like to automate a pull of assets and asset metadata, including protection status, last logged in user and last central activity of those assets to compare with other asset registers…
    • over 6 years ago
    • Sophos Endpoint
    • Discussions
  • Upload Certificate using API

    Andrew Quinn
    Andrew Quinn
    Hi folks, I've started having a play around with XG. I have a PowerShell script for generating a new Let's Encrypt certificate and updating my various components that use it, and wanted to integrate this with XG Home. It looks like the obvious way…
    • Answered
    • over 6 years ago
    • Sophos Firewall
    • Discussions
  • IpHost/IpHostGroup objects added via API never available to Firewall rules

    Bob Dole
    Bob Dole
    Hi All, I added the following IpHost / IpHostGroup objects via API -- which are accepted and created in the system -- with the following payload: <?xml version="1.0" encoding="UTF-8"?> <Configuration APIVersion="1700.1"> <IPHost transactionid…
    • over 6 years ago
    • Sophos Firewall
    • Discussions
<>