Good Day, I am trying to download our Self-Signed Certificate from the Firewall to deploy to all users to prevent users from seeing a certificate error when signing on to the Sophos Connect SSL VPN. There is no download button on the firewall what…

I have import both Certificate and Root CA in Certificate Authorities Menu. But Certificate status Not Trusted persist. I saw a weird description in subject of certificate appears in Sophos. There is a different description between Certificate Menu…

Good afternoon, When we accessed Sophos through the browser, we got an insecure certificate alert. We imported a new certificate into Sophos (the same used on our website), but the following message appears in the certificates menu: Certificate…

Hi Sophos Community, We've had it reported to us by those that use the monitoring software that https decryption has stopped working. We aren't exactly sure when it stopped working, but it appeared to have done some time after moving to 19.5. Though…

I have tried to go to Certificate, and import it there, but it is not Trusted. . Certificate authority: Invalid or not installed Issuer /C=GB/ST=Greater Manchester/L=Salford/O=Sectigo Limited/CN=Sectigo RSA Domain Validation Secure Server CA What…

I am investigating importing our TLS certificates using the SFOS API but running into an error that I am struggling to understand. The request XML: <? xml version "1.0" encoding "UTF-8" ?> < Request APIVersion "1905.1" > <!-- API Authentication…

Moin, ich muss mich zum ersten Mal mit der Webserver Protection auseinandersetzen. Dabei habe ich das Problem, dass ich beim Anlegen einer neuer Firewall Regel, das Zertifikat nicht auswählen kann. Was habe ich bisher gemacht? 1. Das Zertifikat…

Good morning, i installed sophos firewall to use it as wifi guest access, through the hotspot feature. I also bought the standard subscription, so with web Protection the possibility of doing url filtering. I then loaded the CA of my public domain, to…

What is the way to whitelist and add a self-sign cert (Windows Server) on the firewall? Of course I can import the certificate under certificates but its is still not valid (red cross). e.g. Exchange server is using a self-cert for SMTP SSL/TLS connection…

Hallo, any reason why the (build-in) CA cert from Sectigo RSA Domain Validation Secure Server CA was removed the last days? Is that normal or a bug, pattern updates? Anyone else has this CA on the firewall? Had to add it again manual by hand to work again…

Hi, when downloading the Proxy CA here: this logs you out of webadmin immediately. SFOS 19.5.2 MR-2-Build624 XG and XGS

- Web -> HTTPS decryption and scanning -> HTTPS scanning certificate authority (CA) -> "Default" cert in settings - Profiles -> Decryption profiles -> Block insecure SSL -> "Default" cert in booth Re-sign settings - what is in use -> "SecurityAppliance_SSL_CA…

Hej together, does anyone know a way to monitor the installed certificates on the Sophos Firewall. Especially the expiration date would be interesting. I have not found a way via SNMP, SYSLOG or API. I would like to query this from our central monitoring…

Hi, we are using sophos-xg-210,self generated Certificate used but in monitoring its showing no secure protocol available so please help us to find out where is issue.

Ich habe mein Zertifikat erneuert und das neue Zertifikat auf der Firewall eingespielt. Dieses wird auch mit einem grünen Haken als Trusted gekennzeichnet. Jedoch kann ich das Zertifikat in "Admin and User Settings" nicht auswählen. Auch in der Firewall…

Hello community, I have switched from UTM to XG and now I have the following problem with pubic trusted certificates in other zones than the default internal zone. I have configured and uploaded the certificate successfully in the XG appliance,…

Hello to all, I would like to set up an L2TP remote access VPN connection with authentication via certificate. Unfortunately, this does not work if an intermediate certificate is used without having to modify the ipsec configuration via shell. Environment…

Disclaimer : This information is provided as-is for the benefit of the Community. Please contact Sophos Professional Services if you require assistance with your specific environment. Table of Contents Overview What is TLS/SSL Inspection…

Good day to you all When I add a new certificate or certificate authority, always get the next message: "The operation will take time to complete. The status can be viewed from the Log viewer page" New certificates never appear. I found nothig…

Hi, I have a defective XGS2100, an RMA has been opened and a new product will be sent back to me. When it arrives I will do a configuration restore starting from the backup of the faulty one, but two questions arise: 1) I have 5 RED20 devices connected…

Hallo Leute, ich betreibe aktuell eine Sophos XGS 87 mit Standard Protection. Firmwarestand: SFOS 19.5.1 MR-1-Build278 Ich habe folgendes Problem... Mich stört schon seit einer Ewigkeit die Zertifikatsanfrage beim Aufschalten auf die Webadmin…

Hallo Zusammen, googleadservices.com wird scheintbar out-of-the-box von einer XGS als Advertisements erkannt: Die o.g. Meldung ist erst lesbar wenn man das XGS CA Zertifikat importiert hat. Eine Web>Exception hilft nicht: microapp-discovery…

Hello, I want to replace an SG firewall with an XGS. I donwloaded the wildcard certificate (.pem) and the certificate of the CA from the SG and uploaded them on the XGS. Though the the wildcard certicicate doesn't trust the CA. How can i solve this…

Hi, We have one VMWare server protected by this Sophos firewall. All our enterprise web applications are hosted on this server. Now, after accessing these enterprise applications, even though they are passing through the firewall, we are getting…

Hi I cant find anything recent on this in the forums. Im looking to purchase a wildcard certificate for securing several things. Are there any issues i need to be aware of using either a comodo positivessl (cheaper) or essentialssl? I would…