buenas tardes quiero subir mi certificado ssl generado por godaddy.com y me pide una frase compartida. la cual no tengo idea donde se pone. me podrían ayudar. gracias adjunto imagen

Hello. We have a client using Sophos Firewall installed in a VM. ( Firmware 17.5.12) They are have expired SSL CA Certificate and when they applied new SSL CA Certificate, it shows error and VPN users unable to connect. So, now they are using expired…

Having issue registering firewall, guides show to clear certs, but im getting a notice saying the touch is not a valid command. Clear certs post Sophos Firewall: Purging expired certs from Sophos Firewall Rest certs post Registration loop thanks…

Our WMS is sending notification emails but they are bouncing on the firewall but there no logs on the firewall The vendor for the WMS system sent us the logs from their side and the certificate being displayed is saying Cyberoam and we are using sophos…

Hi. I am facing an issue with the Web Application Firewall. I have several WAF rules configured, some using SSL and other are not. They point to a central web server. The domain name is used to differentiate each web app and that is forwarded on to…

We use a Sophos XGS87 (SFOS 19.5.3 MR-3-Build652) and we want to use POP3 Scanning in legacy mode. In document ( https://doc.sophos.com/nsg/sophos-firewall/18.5/help/en-us/webhelp/onlinehelp/AdministratorHelp/Email/HowToArticles/EmailConfigurePOPIMAPScan…

Hallo all, I am currently looking for a lean solution to build a rule per firewall that only applies to authenticated users. I have connected the firewall to the AD and installed the "Client Authentification Agent" on the (Windows) client. The user…

Good Day, I am trying to download our Self-Signed Certificate from the Firewall to deploy to all users to prevent users from seeing a certificate error when signing on to the Sophos Connect SSL VPN. There is no download button on the firewall what…

I have import both Certificate and Root CA in Certificate Authorities Menu. But Certificate status Not Trusted persist. I saw a weird description in subject of certificate appears in Sophos. There is a different description between Certificate Menu…

Good afternoon, When we accessed Sophos through the browser, we got an insecure certificate alert. We imported a new certificate into Sophos (the same used on our website), but the following message appears in the certificates menu: Certificate…

Hi Sophos Community, We've had it reported to us by those that use the monitoring software that https decryption has stopped working. We aren't exactly sure when it stopped working, but it appeared to have done some time after moving to 19.5. Though…

I have tried to go to Certificate, and import it there, but it is not Trusted. . Certificate authority: Invalid or not installed Issuer /C=GB/ST=Greater Manchester/L=Salford/O=Sectigo Limited/CN=Sectigo RSA Domain Validation Secure Server CA What…

I am investigating importing our TLS certificates using the SFOS API but running into an error that I am struggling to understand. The request XML: <? xml version "1.0" encoding "UTF-8" ?> < Request APIVersion "1905.1" > <!-- API Authentication…

Good morning, i installed sophos firewall to use it as wifi guest access, through the hotspot feature. I also bought the standard subscription, so with web Protection the possibility of doing url filtering. I then loaded the CA of my public domain, to…

What is the way to whitelist and add a self-sign cert (Windows Server) on the firewall? Of course I can import the certificate under certificates but its is still not valid (red cross). e.g. Exchange server is using a self-cert for SMTP SSL/TLS connection…

Hallo, any reason why the (build-in) CA cert from Sectigo RSA Domain Validation Secure Server CA was removed the last days? Is that normal or a bug, pattern updates? Anyone else has this CA on the firewall? Had to add it again manual by hand to work again…

Hi, when downloading the Proxy CA here: this logs you out of webadmin immediately. SFOS 19.5.2 MR-2-Build624 XG and XGS

- Web -> HTTPS decryption and scanning -> HTTPS scanning certificate authority (CA) -> "Default" cert in settings - Profiles -> Decryption profiles -> Block insecure SSL -> "Default" cert in booth Re-sign settings - what is in use -> "SecurityAppliance_SSL_CA…

Hej together, does anyone know a way to monitor the installed certificates on the Sophos Firewall. Especially the expiration date would be interesting. I have not found a way via SNMP, SYSLOG or API. I would like to query this from our central monitoring…

Hi, we are using sophos-xg-210,self generated Certificate used but in monitoring its showing no secure protocol available so please help us to find out where is issue.

Hello community, I have switched from UTM to XG and now I have the following problem with pubic trusted certificates in other zones than the default internal zone. I have configured and uploaded the certificate successfully in the XG appliance,…

Hello to all, I would like to set up an L2TP remote access VPN connection with authentication via certificate. Unfortunately, this does not work if an intermediate certificate is used without having to modify the ipsec configuration via shell. Environment…

Good day to you all When I add a new certificate or certificate authority, always get the next message: "The operation will take time to complete. The status can be viewed from the Log viewer page" New certificates never appear. I found nothig…

Hi, I have a defective XGS2100, an RMA has been opened and a new product will be sent back to me. When it arrives I will do a configuration restore starting from the backup of the faulty one, but two questions arise: 1) I have 5 RED20 devices connected…

Hello, I want to replace an SG firewall with an XGS. I donwloaded the wildcard certificate (.pem) and the certificate of the CA from the SG and uploaded them on the XGS. Though the the wildcard certicicate doesn't trust the CA. How can i solve this…