Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 3 replies
  • Subscribers 1 subscriber
  • Views 7061 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

How to change central site certificate for SSL VPN

mnees
i want changing the (old) central SSL VPN Certificate (at central UTM firwall) through a new one with better encryption parameters. But main problem is that at the moment i changed all SSL VPN Clients (Windows laptops) will not work till i or the users self update their config. Most users are do not have admin rights to update their SSL VPN settings.

Does anyone have some suggestions to me how i can smoothly migration all the clients during the next weeks? Or any hint that i can get my goal - getting a better central certificate ? Someone told me that i can use 2 certificates at Sophos UTM ?


This thread was automatically locked due to age.
  • 0
    The clients don't need admin rights to install the new configuration.  If you haven't configured the User Portal, you can download the new configuration for each user on the 'Users' tab in 'Definitions & Users >> Users & Groups'.  You can only use a single server certificate for SSL VPNs.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Thanks for your reply BAlfson,

    Is it possible to prepare users SSL config on a different (Test) System (of course with same parameters and the NEW certificate)? If yes any hints that i should keep in mind ?

    Do someone else hear about a possibility to hold 2 SSL certificates parrallel at central site (for such a migration) ?
  • 0
    Check the 'Action' drop-down box at the top of the user list.

    Certificates - check the 'Advanced' tab in SSL VPN.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
Unfiltered HTML