Skip to content
Any configuration changes made locally on the switch won't be synchronized with Sophos Central. We recommend making changes from the Sophos Central control panel instead.

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/switch/help/en-us/index.html?contextId=user-guide-features-configure-SSL-TLS

SSL/TLS certificate details

You can see the details of the switch's SSL/TLS certificate on the SSL/TLS page.

By default, Sophos Switch uses a self-signed certificate. You can import your organization's SSL/TLS certificate for the web admin interface and REST API. This removes the need to install the self-signed certificate for users. You can only import one SSL/TLS certificate.

To import your own certifcate, do as follows:

  1. Go to Configure > SSL/TLS and click Import.

  2. Enter your certificate information in the following format:

    ----- BEGIN CERTIFICATE -----
ajiioicvfstifpanebataomnepoantcaftafp
ncoojicndnsmcncgczzfdtrasdvykkkkoocak
mcmoacijcNOCHdonVBUDVbddVIcjbduvgduvb
nciOIHufbFigBINPjurhbinIJCNPJNOIncINP
----- END CERTIFICATE -----

  3. Enter your public key in the following format:

    ----- BEGIN PUBLIC KEY -----
ajiioicvfstifpanebataomnepoantcaftafp
ncoojicndnsmcncgczzfdtrasdvykkkkoocak
mcmoacijcNOCHdonVBUDVbddVIcjbduvgduvb
nciOIHufbFigBINPjurhbinIJCNPJNOIncINP
----- END PUBLIC KEY -----

  4. Enter your private key in the following format:

    ----- BEGIN PRIVATE KEY -----
ajiioicvfstifpanebataomnepoantcaftafp
ncoojicndnsmcncgczzfdtrasdvykkkkoocak
mcmoacijcNOCHdonVBUDVbddVIcjbduvgduvb
nciOIHufbFigBINPjurhbinIJCNPJNOIncINP
----- END PRIVATE KEY -----

  5. Click Apply.

  6. Confirm the certificate details are correct and click Restart HTTPS.