Trying to delete some expired Certificate Authorities that are no longer used by any of our WAF rules, but receive "Certificate authority could not be deleted"
Using WinSCP and navigating to /conf/certificate/cacerts/, the certificate authorities that wont delete have directory names with file extensions, and within those directories exists certificates with odd extensions pem1.pem.
Does this look like a bug to any of you? I've had a case open with Sophos Support for about a three weeks without any solution.
All other certificate authority certs reside in the root of /conf/certificate/cacerts
I should also mention, when I renamed one of these folders, specifically "LetsEncrypt Full Chain 122820.pem", the IPS service halted due to not being able to find the folder. Not entirely sure why the IPS is reading these directories but may provide a clue as to why I can't delete them from the Certificate Authorities page. Restoring the directory name allowed the IPS service to start again. (Update: the reason why the IPS service halted was because the symbolic link to the folder was not removed, removing the symbolic link corrected the issue with IPS)
Thanks
This thread was automatically locked due to age.
