The Support Access function on the Support > Support Access tab enables support staff to connect to the WebAdmin of Sophos UTM on AWS without knowing a certain login account. Support will have root access to Sophos UTM on AWS and connect via SSH.The HTTPS traffic of the session is proxied by the Support Access function. Identification of Sophos UTM on AWS happens through an access ID which you have to convey to the support staff. When Support Access is enabled, Support can access Sophos UTM on AWS over HTTPS on TCP port 22 from the WAN. The connection can only be initiated by Sophos UTM on AWS.
To initiate the Support Access Management function, proceed as follows:
Enable Support Access Management.
Click the toggle switch.
The toggle switch turns green and the Settings area becomes editable.
Specify the access time.
Select from Grant access for the time the access should be valid.
Note – You can extend or shorten the access time at any time by applying the settings again.
Sophos UTM on AWS establishes a secure control connection and negotiates a unique access ID.
Communicate the Access ID to the Sophos support.
The support uses this access ID to log in to Sophos UTM on AWS. The connection remains established until the specified time expires or you deactivate the function.
To deactivate the Support Access, click the toggle switch.
If the Support Access is enabled, the Access ID and the time the access ends automatically are displayed.
The Live Log logs the Support Access activities, showing all incoming commands. Click the button to open the live log in a new window.