This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Can someone tell me what the x.509 user certificates are used for in UTM 9?

Are they used at all for SSL VPN or only for IP sec ? As far as I can tell the SSL VPN uses user and password and not these user certs. The reason I ask is that there doesn't seem to be a simple way to regenerate them if they user cert's were to become compromised.. or is there?

This thread was automatically locked due to age.

0 BAlfson over 8 years ago

Hi, Ronald, and welcome to the UTM Community!

OpenVPN definitely requires the use of certs as does email encryption. You may use them with L2TP/IPsec.

If you want to replace just one cert, that's easy enough: create a new cert, in the User object, select the new cert and then, in Certificate Management, delete the old cert. If you believe your VPN Signing CA has been compromised, go to the 'Advanced' tab where you can regenerate it, simultaneously causing the replacement of all User certs with new ones based on the new CA.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel