https://community.sophos.com/utm-firewall/f/hardware-installation-up2date-licensing/130707/adding-webserver-protection-to-new-cert---sophos-xg-utmHello I need some assistance to apply a certificate to my firewall westerner protection The certificate has been supplied by Go Daddy and has been added to my IIS DMZ server I just nee to know how to allow the cert to be used by web server protectionen-USTelligent Community 12https://community.sophos.com/thread/480308?ContentTypeID=1Sat, 16 Oct 2021 19:59:30 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:45a438c1-f209-48e8-a3db-020afb8e8fb2dirkkotte<p>You have to import a certificate including the private key. <br />I think the pfx may contain the private key.<br />After importing the cert (with an recognizable name ...host.domain.tld-2111), you can select the new certificate within WAF-Config.</p><div style="clear:both;"></div>https://community.sophos.com/thread/480303?ContentTypeID=1Sat, 16 Oct 2021 17:15:16 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:9cf27c24-5cd5-4a8c-85e3-573963db8ed6Darren Mitchell1<p>It&rsquo;s for Sophos SG. My mistake.&nbsp;<br />yeah there is a go daddy cert which expires tomorrow.&nbsp;<br />so wanted to see how to import the new go daddy cert.&nbsp;</p> <p>should I import the cert as a pfx or a pen cert.&nbsp;<br />ive taken a copy of the cert from the go daddy portal.&nbsp;<br />cheers.&nbsp;<br />Darren.&nbsp;</p><div style="clear:both;"></div>https://community.sophos.com/thread/480300?ContentTypeID=1Sat, 16 Oct 2021 15:15:10 GMT4be5eb7d-caa4-4ff5-8e60-8f9463545a35:0ce127c5-211e-46ab-a39b-18fd23d510e2dirkkotte<p>your webserver protection currently use the old certificate ... or you don#t use webserver-protection until now?</p> <p>ps: your screenshot is from Sophos SG ... but your question contains &quot;Sophos XG utm&quot; ... you ask for SG/UTM and not XG .. correct?</p><div style="clear:both;"></div>