Administrative access

This section provides information on how to access XG Firewall.

An administrator can connect and access XG Firewall through HTTPS, telnet, or SSH services. Depending on the administrator sign-in account profile used for access, an administrator can access number of administrative interfaces and the web admin console configuration pages.

XG Firewall is shipped with one administrator account and four administrator profiles.


Administrator type	Sign-in credentials	Console access	Privileges
Super administrator	admin/admin	Web admin console CLI console	Full privileges for both the consoles. It provides read-write permission for all the configuration performed through either of the consoles.

Note We recommend that you change the password of the user immediately on deployment.

Web admin console

The web admin console is a web-based application that an administrator can use to configure, monitor, and manage XG Firewall.

You can connect to and access the web admin console of XG Firewall using HTTPS connection from any management computer using web browser:

HTTPS sign-in: https://<LAN IP address of XG Firewall>

Command line interface (CLI) console

CLI console provides a collection of tools to administer, monitor, and control certain component(s) of XG Firewall. XG Firewall can be accessed remotely using the following connections:

Remote sign-in utility – TELNET sign-in
SSH client (serial console)
Use CLI console for troubleshooting and diagnosing network problems in details.

Sophos Firewall Manager (SFM)

Distributed XG Firewall devices can be centrally managed using a single Sophos Firewall Manager (SFM) device, enabling high levels of security for MSSPs and large enterprises. To monitor and manage XG Firewall devices through SFM you must:

Configure SFM in XG Firewall.
Integrate XG Firewall with SFM.
Once you have added the XG Firewall devices and organized them into groups, you can configure single XG Firewall devices or groups of XG Firewall devices.