Use https://seceonhelp.freshdesk.com/support/login to access updated Knowledge Base Articles, Submit Technical Support Tickets and Review Status of submitted support tickets.

Sophos: XG Remediator setup

Overview

The platform has built in integration with most of the well known Network Devices(referred as Remediators in the rest of this document) using their APIs. With the User providing once in the beginning the credentials of the remediators, the platform is capable to push policies as required by the remediation rules. It needs to be ensured that the provided user credentials in the platform are having required privileges so that the action can be taken using those. These credentials are added one-time in the Remediator screen of the platform which is present under the Administration section of the UI.

Steps of Configuration

Step1:

Put the following inputs:

 

  • Device IP:

  • Port:

  • Name: Could be anything

  • Domain: Not required

  • Username:

  • Password:

  • Confirm Password:

 

Note: User should having admin privilege

  • Now click on Save.



Step2: Now we need to allow API Access.

Turn on API configuration and allow API access from the administrator's IP address. You also allow access to the administrative services of Sophos Firewall.

  1. Go to Backup and firmware > API.

  2. Select API configuration.

  3. For Allowed IP address, enter the CCE IP address where cce remediation container is running.

  4. Click Apply.

The following image shows an example of how to configure the settings:

Reference: https://docs.sophos.com/nsg/sophos-firewall/18.5/Help/en-us/webhelp/onlinehelp/AdministratorHelp/BackupAndFirmware/API/APIUsingAPI/index.html#allow-api-access

Verification

  • Now click on left arrow and expend it

  • Click on Test connection

  • Test Connection should show connection Successful like below SS

  • Now Click on Check Device Status

  • If Outcome shows Success it means remediator has been setup successfully.

  • Done!

 

 

 

 

Seceon Inc. All rights reserved. https://www.seceon.com