Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 2 replies
  • Subscribers 27 subscribers
  • Views 643 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Certificate issue

itguy318

My XG failed a few months ago and a new XG was shipped to us. I did restore from the backup of the failed XG onto the new one and everything was up and running and have had no issues. 

 I noticed that the local SSL cert of the XG has the serial number that belongs to the old XG. It has caused authentication issue for a remote citrix client and a users pc wouldnt connect to the network. Would i be ok to regenerate a new certificate for my XG. I also have ssl vpn setup on my XG. would i have to reconfigure ssl vpn again for my end users given that most are working from home have and have limited admin access to reinstall the OpenVPN client. I dont want to shoot myself by sorting this certificate issue and asking employees to come around to the office to redeploy the ssl vpn client on their pc's. Thanks



This thread was automatically locked due to age.
Parents
  • FormerMember
    0 FormerMember

    Hi ,

    Thank you for reaching out to the Community! 

    SSL Remote VPN user certificates are created based on the firewall's default certificate, so if you re-generate the default certificate, the user certificate needs to be recreated as well. Once the user downloads a new configuration from the user portal, the process will create a new user certificate.

    If you decide to update the firewall's default certificate, all the users have to re-download the SSL VPN configuration file.  

    In your case, I would suggest you try Sophos Connect Client 2.0. More info here: Sophos Connect 2.0 is now GA

    Thanks,

  • 0 in reply to FormerMember

    Thank you for the explanation. So if i import a backup from another device onto a new one, will the backup config retain the default certificate from the old device. 

Reply Children
No Data