Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 10 replies
  • Answers 1 answer
  • Subscribers 28 subscribers
  • Views 979 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XGS2100 does not synchronize with Sophos Central

Ben@Network

Hello Community,

I have added a new XGS2100 (SFOS 19.0.1-365) to Sophos Central. When I move the firewall to a group, the synchronization of objects starts briefly and stops after a few seconds with the message "Error needs attention".

On the firewall in the "centralmanagement.log" and in the "sophos-central.log" I did not find anything why the synchronization stops.
Even deleting it from Sophos Central and re-installing it did not change the behavior.

This is not the first firewall that I have added to Sophos Central, this week I had already successfully added an XGS126.

Does anyone have a tip for me?

Thanks,

Ben



This thread was automatically locked due to age.
Parents
  • 0

    Hi Ben@Network

    May I know the current status of the license, time and Default Certificate under System -->Admininstration-->Licensing | Time 

    Can you try the following steps from the advance shell:
    ================
    Step1: central-register --status
    Step2: central-register --unregister
    =================
    And then try again the registration process - along side run the tail -f /log/centralmanagement.log logs

    Thanks and Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Hi Bharat J,

    Still the same issue. The firewall won’t get the Central objects. I followed your instructions and unregistered the via CLI and registered it via WebAdmin (but the after the CLI unregister the CLI shows “unregistered” and the WebAdmin shows still “Registered”, I must do the same here: Unregister on WebAdmin). After the reboot I registered the firewall again and the Central Sync still fails.

    Actual the license of the firewall is not registered. I will do it later if the firewall is onsite. The Time and Timezone are set correctly. The firewall has only the default certificate which was on firewall generated.

    Here are the Log-File.

    Ben

    2022-08-26 10:38:12Z INFO central-connect[30222]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:38:12Z INFO central-connect[30222]:271 main:: - got response of poll for SSO. Status: disconnected backupExpected: 
    2022-08-26 10:38:42Z INFO central-connect[30646]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:38:42Z INFO central-connect[30646]:271 main:: - got response of poll for SSO. Status: disconnected backupExpected: 
    2022-08-26 10:39:13Z INFO central-connect[31099]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:39:13Z INFO central-connect[31099]:271 main:: - got response of poll for SSO. Status: disconnected backupExpected: 
    2022-08-26 10:39:42Z FATAL central-connect[31361]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:40:12Z FATAL central-connect[31664]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:40:43Z FATAL central-connect[31913]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:41:12Z FATAL central-connect[32126]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:41:40Z FATAL central-connect[32547]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:41:40Z FATAL central-connect[32618]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:41:42Z FATAL central-connect[32684]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:42:12Z FATAL central-connect[356]:59 main:: - Seems that we got called by accident since we are not registered. Exiting. 
    2022-08-26 10:42:43Z INFO central-connect[746]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:42:44Z WARN API.pm[746]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 404 Not Found
    Connection: close
    Date: Fri, 26 Aug 2022 10:42:44 GMT
    Server: -
    Content-Length: 0
    Client-Date: Fri, 26 Aug 2022 10:42:44 GMT
    Client-Peer: 52.29.42.248:443
    Client-Response-Num: 1
    Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
    Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
    Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
    Client-SSL-Socket-Class: IO::Socket::SSL


    2022-08-26 10:42:44Z INFO central-connect[746]:232 main:: - Poll for SSO Sessions failed. 
    2022-08-26 10:42:44Z ERROR Tools.pm[746]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied 
    2022-08-26 10:43:15Z INFO central-connect[971]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:43:16Z WARN API.pm[971]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 404 Not Found
    Connection: close
    Date: Fri, 26 Aug 2022 10:43:16 GMT
    Server: -
    Content-Length: 0
    Client-Date: Fri, 26 Aug 2022 10:43:16 GMT
    Client-Peer: 52.29.42.248:443
    Client-Response-Num: 1
    Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
    Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
    Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
    Client-SSL-Socket-Class: IO::Socket::SSL


    2022-08-26 10:43:16Z INFO central-connect[971]:232 main:: - Poll for SSO Sessions failed. 
    2022-08-26 10:43:16Z ERROR Tools.pm[971]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied 
    2022-08-26 10:43:47Z INFO central-connect[1219]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:43:48Z WARN API.pm[1219]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 404 Not Found
    Connection: close
    Date: Fri, 26 Aug 2022 10:43:48 GMT
    Server: -
    Content-Length: 0
    Client-Date: Fri, 26 Aug 2022 10:43:48 GMT
    Client-Peer: 52.28.30.73:443
    Client-Response-Num: 1
    Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
    Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
    Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
    Client-SSL-Socket-Class: IO::Socket::SSL


    2022-08-26 10:43:48Z INFO central-connect[1219]:232 main:: - Poll for SSO Sessions failed. 
    2022-08-26 10:43:48Z ERROR Tools.pm[1219]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied 
    2022-08-26 10:43:51Z INFO central-connect[1250]:74 main:: - Sending enable request to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com] 
    2022-08-26 10:43:56Z WARN API.pm[1250]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 400 Bad Request
    Connection: close
    Date: Fri, 26 Aug 2022 10:43:55 GMT
    Server: -
    Content-Length: 0
    Client-Date: Fri, 26 Aug 2022 10:43:56 GMT
    Client-Peer: 52.28.30.73:443
    Client-Response-Num: 1
    Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
    Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
    Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
    Client-SSL-Socket-Class: IO::Socket::SSL


    2022-08-26 10:43:56Z INFO central-connect[1250]:85 main:: - Firewall Management could not be enabled. 
    2022-08-26 10:43:56Z ERROR Tools.pm[1250]:97 SFOS::Common::Central::Tools::report_status - ENOTENABLED: no sophisticated error message supplied 
    2022-08-26 10:47:38Z INFO central-connect[8948]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:47:39Z WARN API.pm[8948]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 404 Not Found
    Connection: close
    Date: Fri, 26 Aug 2022 10:47:39 GMT
    Server: -
    Content-Length: 0
    Client-Date: Fri, 26 Aug 2022 10:47:39 GMT
    Client-Peer: 52.29.42.248:443
    Client-Response-Num: 1
    Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
    Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
    Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
    Client-SSL-Socket-Class: IO::Socket::SSL


    2022-08-26 10:47:39Z INFO central-connect[8948]:232 main:: - Poll for SSO Sessions failed. 
    2022-08-26 10:47:39Z ERROR Tools.pm[8948]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied 
    2022-08-26 10:48:10Z INFO central-connect[9319]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:48:11Z WARN API.pm[9319]:119 SFOS::Common::Central::API::send_request - HTTP/1.1 404 Not Found
    Connection: close
    Date: Fri, 26 Aug 2022 10:48:12 GMT
    Server: -
    Content-Length: 0
    Client-Date: Fri, 26 Aug 2022 10:48:11 GMT
    Client-Peer: 52.29.42.248:443
    Client-Response-Num: 1
    Client-SSL-Cert-Issuer: /C=US/O=Amazon/OU=Server CA 1B/CN=Amazon
    Client-SSL-Cert-Subject: /CN=utm-cloudstation-eu-central-1.prod.hydra.sophos.com
    Client-SSL-Cipher: ECDHE-RSA-AES128-SHA256
    Client-SSL-Socket-Class: IO::Socket::SSL


    2022-08-26 10:48:11Z INFO central-connect[9319]:232 main:: - Poll for SSO Sessions failed. 
    2022-08-26 10:48:11Z ERROR Tools.pm[9319]:97 SFOS::Common::Central::Tools::report_status - EPOLLSSOFAIL: no sophisticated error message supplied 
    2022-08-26 10:48:41Z INFO central-connect[9941]:418 main:: - Sending disable request to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com] 
    2022-08-26 10:48:41Z INFO central-connect[9941]:433 main:: - Firewall Management successfully disabled. 
    2022-08-26 10:48:42Z INFO central-connect[9978]:74 main:: - Sending enable request to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com] 
    2022-08-26 10:48:43Z INFO central-connect[9978]:90 main:: - Firewall Management successfully enabled. 
    2022-08-26 10:49:21Z INFO central-connect[10285]:74 main:: - Sending enable request to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com] 
    2022-08-26 10:49:21Z INFO central-connect[10285]:90 main:: - Firewall Management successfully enabled. 
    2022-08-26 10:49:51Z INFO central-connect[10622]:101 main:: - Sending check status request to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com] 
    2022-08-26 10:49:55Z INFO central-connect[10636]:144 main:: - Sending ssh key exchage request to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com] 
    2022-08-26 10:49:55Z INFO central-connect[10636]:200 main:: - SSH key exchanged successfully. 
    2022-08-26 10:49:56Z INFO central-connect[10652]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:49:58Z INFO central-connect[10652]:271 main:: - got response of poll for SSO. Status: requested backupExpected: 
    2022-08-26 10:50:29Z INFO central-connect[11064]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:50:29Z INFO central-connect[11064]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:51:00Z INFO central-connect[11292]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:51:00Z INFO central-connect[11292]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:51:31Z INFO central-connect[11532]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:51:31Z INFO central-connect[11532]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:52:02Z INFO central-connect[11673]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:52:02Z INFO central-connect[11673]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:52:33Z INFO central-connect[11994]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:52:33Z INFO central-connect[11994]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:53:04Z INFO central-connect[12234]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:53:04Z INFO central-connect[12234]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:53:35Z INFO central-connect[12589]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:53:37Z INFO central-connect[12589]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:54:08Z INFO central-connect[12829]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:54:08Z INFO central-connect[12829]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:54:38Z INFO central-connect[13082]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:54:39Z INFO central-connect[13082]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:55:10Z INFO central-connect[13322]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:55:10Z INFO central-connect[13322]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:55:41Z INFO central-connect[13572]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:55:41Z INFO central-connect[13572]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:56:12Z INFO central-connect[13698]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:56:12Z INFO central-connect[13698]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:56:43Z INFO central-connect[14508]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:56:43Z INFO central-connect[14508]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:57:14Z INFO central-connect[14809]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:57:14Z INFO central-connect[14809]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:57:45Z INFO central-connect[15142]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:57:45Z INFO central-connect[15142]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:58:16Z INFO central-connect[15377]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:58:16Z INFO central-connect[15377]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:58:47Z INFO central-connect[16041]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:58:47Z INFO central-connect[16041]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:59:18Z INFO central-connect[16437]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:59:18Z INFO central-connect[16437]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 10:59:49Z INFO central-connect[16594]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 10:59:49Z INFO central-connect[16594]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 11:00:20Z INFO central-connect[16808]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 11:00:20Z INFO central-connect[16808]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 11:00:51Z INFO central-connect[17065]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 11:00:51Z INFO central-connect[17065]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 11:01:22Z INFO central-connect[17295]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 11:01:22Z INFO central-connect[17295]:271 main:: - got response of poll for SSO. Status: connected backupExpected: 
    2022-08-26 11:01:53Z INFO central-connect[17600]:221 main:: - Polling for SSO to PIC-URI [https://utm-cloudstation-eu-central-1.prod.hydra.sophos.com]/sophos/api/v1/firewalls/X210104H4C2Y40B/sshTunnel Timezone: Europe/Warsaw 
    2022-08-26 11:01:53Z INFO central-connect[17600]:271 main:: - got response of poll for SSO. Status: connected backupExpected:

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Ben@Network

    Hi Ben@Network

    Please edit the post and Hide your Sophos Appliance key from the logs you have shared.

    Logs say it is getting registered with Sophos Central still suspecting issue with Sophos XG not registered with valid license once you are at site registered the device apply the license you have got from partner and check it again,make sure you initiate the logs in case of issue remain as same

    Thanks and Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Hi,

    I installed the license for this device, but I get the same error. I also installed the firmware from a USB Key again but this also did not change anything. I checked the logs on Sophos Central and I found an issue with a CA certificate:

     
    {
     "opcodeID": 480,
     "entityID": 16,
     "entityName": "upload_certificate_authority",
     "opcodeType": 2,
     "orderID": 4,
     "opcodeString": "",
     "responseStatus": "{\"status\":404,\"statusmessage\":\"File Download Request Failed\"}",
     "uniqueName": "Company-16",
     "updateFlag": "f",
     "mainEntity": "t",
     "fileList": [
     {
     "fileAttrID": 0,
     "attributeName": "cakeyfile",
     "filePath": "8a98ef47-5332-499a-bd8a-d15430b1f5e9_RootCA_Company.key"
     },
     {
     "fileAttrID": 0,
     "attributeName": "cacertfile",
     "filePath": "8a98ef47-5332-499a-bd8a-d15430b1f5e9_RootCA_Company.pem"
     }
     ]
    }

    If I upload the certificate via WebAdmin I have no issue. I tried to update or delete the CA via Sophos Central, but this is not possible because of the CA is existing (update) or in use (delete). How can I fix the corrupted CA certificate?

    Ben


    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Ben@Network

    Hi Ben@Network

    To Regenerate certificate authority on Sophos XG follow the below steps : 

    1. Go to Certificates > Certificate authorities.
    2. To regenerate the default certificate, go to the Manage column and click  .
      Note : When you update the default CA, it is automatically regenerated.
      Update the default CA

      You can edit the default certificate authority.

      To edit the default CA, do as follows:

      1. Go to Certificates > Certificate authorities and click the default CA (Default).

        You can't change the CA name.

      2. You can change the following attributes:

        Name Description
        Country name Country in which the device is deployed.
        State The state within the country.
        Locality name Name of the city.
        Organization name Name of the certificate owner.
        Example: Sophos Group
        Organization unit name Name of the department to which the certificate will be assigned.
        Example: Marketing
        Common name Common name or FQDN.
        Example: marketing.sophos.com
        Email address Contact person's email address.
        Private key password If a password was set for the CA, you can change it here.
        Key type Select from the following options:
        • RSA
        • Elliptic curve
        Key length If you've set the key type to RSA, select the key length. It's the number of bits used to construct the key.

        Larger keys offer greater security, but it takes longer to encrypt and decrypt data.
        Curve name If you've set the key type to Elliptic curve, select the curve name.
        Secure hash Select the algorithm from the list.

      3. Click Save.

      Please share current firmware you have uploaded 

      Thanks and Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Hi,

    it is not an issue with the default Firewall CA. We push our internal CA certificate to the Firewall and this CA push (download to firewall) cause the error and the Sophos Central sync will fail.

    Ben

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Ben@Network

    Hi Ben@Network

    Please share the error or error messages 

    Regards

    "Sophos Partner: Infrassist Technologies Pvt Ltd".

    If a post solves your question please use the 'Verify Answer' button.

  • 0 in reply to Bharat J

    Hi,

    the JSON fragment I posted above is the only error I see. If the Central sync comes to this certificate, it throws this error and stops to sync other objects.

    Ben

    If a post solves your question please use the 'Verify Answer' button.

Reply Children
Unfiltered HTML