XG Firewall

Suggest, discuss, and vote on new ideas for Sophos XG Firewall. The next thing in next-gen.

Suggest an Idea...

Let's Encrypt Integration

It would be very nice if Let's Encrypt certificates (letsencrypt.org) can be generated directly from the XG Gui. So that the "Let's Encrypt Client" is integrated in the XG. Would it be possible?
Best Regards

430 votes
Sign in
Check!
(thinking…)
Reset
or sign in with
  • sso
  • facebook
  • google
    Password icon
    Signed in as (Sign out)

    We’ll send you updates on this idea

    Roman Krapf shared this idea  ·   ·  Flag idea as inappropriate…  ·  Admin →

    33 comments

    Sign in
    Check!
    (thinking…)
    Reset
    or sign in with
    • sso
    • facebook
    • google
      Password icon
      Signed in as (Sign out)
      Submitting...
      • Robert Schmidt commented  ·   ·  Flag as inappropriate

        I hope this is even read by Sophos, because apparently this is not done anymore.

        Let's Encrypt is important for those who run the XG in the home area. Since some of the Sophos want to look after externally, a web interface for external (WAN) is required. Currently you only have the opportunity to buy expensive certificates that you actually do not need, because there is a free alternative. In the UTM, the function is already integrated, I wonder, of course, why this does not work for the XG? In addition, there is currently the need to use https in Europe for all web connections. So we need a certificate. Either you buy these or you have to create a Let's Encrypt certificate.

        So I really hope that you finally agree with this feature and implement it into the XG.

      • Simon Monai commented  ·   ·  Flag as inappropriate

        The UTM just got that feature, why didn't the XG? It's still a point that holds me back from moving on to the new version...

      • Anonymous commented  ·   ·  Flag as inappropriate

        Can you do more than just consider this feature? Implementing it would be very nice... We pay top dollar for XG, but sometimes we feel like we're still in beta. Come on Sophos, you did it for UTM, how about for the "next generation" XG?

      • Michael Jelinski commented  ·   ·  Flag as inappropriate

        Keine Antwort von Sophos seit "19. April 2017". Ich denke das Sophos kein Interesse an den Wünschen der Kunden hat. Das Portal hat die Kunden nur seit 2 Jahren hingehalten und die Telefonleitungen bei Sophos frei gehalten. Sehr schade...

      • Manuel commented  ·   ·  Flag as inappropriate

        Knock Knock, anyone there?
        It's about time to give an update since april 2017.

        Thank you for your engagement.

      • Michael Jelinski commented  ·   ·  Flag as inappropriate

        Alan
        (Sr. Product Manager, Sophos Features & Ideas Laboratory)
        Antwortete 19. April 2017
        We’re considering this

        ----

        Es wird seit 2 Jahren überlegt. Wieso gibt es noch keine Ergebnisse oder zumindest einen Zeitplan bis wann mit der Umsetzung zu rechnen ist? Wurde die Wichtigkeit von sicheren Zertifikaten noch nicht erkannt?

      • Anonymous commented  ·   ·  Flag as inappropriate

        Hello ,
        any news?
        Please give us an aswer, few of our customers would like to change sophos because this is not working.

      • Michael Jelinski commented  ·   ·  Flag as inappropriate

        Schade das Sophos die Wichtigkeit von Let's Encrypt noch nicht erkannt hat. Vielleicht sollten die Nutzer mal ein Fachzeitschriften-Abo für die Sophos Entscheider spendieren.
        Oder gibt es andere Gründe weshalb die Technik der XG dem aktuellen Stand der Technik mehrere Jahre hinterherhinkt?
        Selbst die Open Source Alternativen sind da meilenweit weiter... Schade...

      • Clark commented  ·   ·  Flag as inappropriate

        337 votes and all we get is "We're considering this"... For a security company, not so impressed...

      • Dave Hamer commented  ·   ·  Flag as inappropriate

        Crazy that this still hasn't been implemented - especially since the Google Chrome patch, and especially as you're implementing it in UTM.

      • Steve commented  ·   ·  Flag as inappropriate

        Agree, I've got multiple XGs that could use this, and I avoid UTM like the plague (because it's bad!)

      • Ermanno Goletto commented  ·   ·  Flag as inappropriate

        Native support for Sophos XG is a killer feature after July 2018 now that Google Is Marking Non-HTTPS Websites As ‘Not Secure’

      ← Previous 1

      Feedback and Knowledge Base

      icon-data-protection icon-endpoint-protection icon-phish-threat icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-central icon-sophos-mobile icon-sophos-utm icon-sophos-utm icon-sophos-utm icon-web-appliance icon-xg-firewall icon-xg-firewall icon-avid-secure icon-lightbulbCreated with Sketch.