Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 3 replies
  • Answers 1 answer
  • Subscribers 3 subscribers
  • Views 3540 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Replace SSL Cert without re-doing VPN config to users

James Delfino

We have taken over a firewall with an expired SSL which they need to update.

Is there a way to update the SSL with a new one, without having to reconfigure all the user VPN configs?



This thread was automatically locked due to age.
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    You can upload the new certificate on the firewall, but as soon as you replace the old certificate with the new one, the remote SSL VPN user's certificate will become invalid, and they won't be able to log in to the Remote SSL VPN. 

    The Remote SSL VPN user certificate will be re-generated based on the new certificate when the user downloads the new configuration from the user portal. 

    It's not possible to replace the old certificate without re-downloading the new configuration for the users.

    Thanks,

  • 0

    Hi James and welcome to the UTM Community!

    You could download the config files en masse and then email each configuration to the individual user.  Note there's a check box next to each user in 'Definitions & Users >> Users & Groups' and an 'Action' drop-down menu at the top of the list.

    Cheers - Bob

     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0

    Thanks for the confirmation all will re deploy as suggested!

Unfiltered HTML