Skip to content

Reset secure storage master key

The secure storage master key provides extra protection for the account details stored on Sophos Firewall. The key encrypts sensitive information, such as passwords, secrets, and keys, preventing unauthorized access.

Once the secure storage master key has been configured, you can reset it using this option on the CLI.

Restriction

This option only appears if you created the key on the web admin console.

You can't restore backups taken using the old secure storage master key with the new master key.

The secure storage master key can only be reset using the default super administrator account.

To reset the secure storage master key, do as follows:

  1. Enter the default admin account password.
  2. Enter a new secure storage key.
  3. Reenter the new key to confirm.
  4. The secure storage master key is reset.

The following image shows the secure storage master key reset process.

System Settings

1.  Set Password for User Admin
2.  Set System Date
3.  Set Email ID for system notification
4.  Reset Default Web Admin Certificate
5.  Reset secure storage master key
0.  Exit

Select Menu Number [0-5]: 5
Enter the default admin account password:
****
Enter a new key that satisfies the following requirements:
- Minimum 12 characters
- An uppercase letter
- A lowercase letter
- A number (0-9)
- A special character (!#$%&()*+,-./:;<=>?@[]^_`{|}~)
New secure storage key:
************
To confirm, reenter the new key:
************
Secure storage master key has been reset.