WebAdmin: Be careful it can bite!!
I've recently tried to update the webadmin portal domain to some thing different to the hosts defined in the Webserver (Real/Virtual) area of the SOPHOS interface.
And yes, this is what bit me! Unwittingly I found I'd not only changed the domain of the webadmin portal but also all the defined webservers supporting our production environment!!!!
Ouch.
Not only that but the certificates that were used for TLS are no longer retrievable from the UI. So you have to act fast in finding them outside of SOPHOS and re-import and activate.
So it's a double whamy.
What I'd like to propose;
It needs to be clearly stated on the screen and in doco that the webadmin portal is fundamental to the domain host definitions and any changes will impact ALL hosted webservers – even though you appear to be in a webadmin (portal) only tab. Ideally the screen should also check for a change in host name from the webservers and give a final prompted warning of the danger. Better still, remove this functionality entirely from the webadmin tab and place on a dedicated “Core Host Domain” or similar tab.
Also don't block access to the certificates previously imported and active - if they could have been reselected I could have reduced the recovery time incredibly.
Please do something so that others will be saved others from this painful experience!
Thank you.

1 comment
-
Martin commented
Forgot to add, this is for the current version of UTM as I type - 9.705-3.