Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 2 subscribers
  • Views 940 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Require certificate for admin

NathanCole
I'd like to require a certificate to connect to the administration page.

Is this currently possible?  I am running a certificate authority, which I can issue certificates to individuals.  I have the CA added to CA's on the Sophos box.  So, it should just require forcing a client certificate auth.

I've seen this used when connecting to bank websites, or even the CA requires the client cert installed in the browser to authenticate.

I'd like to keep user auth, but also use the client cert.


This thread was automatically locked due to age.
  • 0
    Hi ,

    There is no client certificate authority option for accessing wrbadmin.
    You can. Change the webadmin certificate but for all users.

    All my best.

    Gilipeled
  • 0
    Change 'Allowed networks' to contain only "Rx7TyreBurna (User Network)" - don't enable any Remote Access methods that don't require a certificate.

    Cheers - Bob
    PS You will need to be connected via VPN to eliminate the Network/Host from which you were connected when you made the changes above.
    PPS I don't recommend that people do this - it's too easy to lock yourself out if anything goes wrong with the user object, VPN, etc.
  • 0 in reply to BAlfson
    Bummer!

    Thanks though!

    I currently only allow management from my management subnet at home, which are very specific ports on the switch.  If I want to admin it right now, I VPN in, then RDP to a management workstation.  [:)]

    Little extra work, but not too bad.  Was just hoping for certs. hahaha.

    Thanks for the info guys!