Use the Configuration > System > Certificates page to manage the certificate used by the appliance. This certificate is used by the Web Appliance to create secure connections with browsers for HTTPS scanning as well as the Administrative User Interface.

You can either provide your own certificate, or use the self-signed certificate provided with the Web Appliance.
On both the Certificate Authority and UI & Portal Certificate tabs you can either:
  • Select Sophos certificate to use the self-signed certificate provided with your appliance, or
  • Select Custom Certificate if you want to use your own private key and signing certificate.
In the near future, Microsoft, Mozilla, and potentially other companies will begin to block or warn when using SHA-1 based certificates. You can use the new Regenerate Certificates button to switch the Sophos certificate to a more secure SHA-256 signature.