AaronFalzon
/
SophosXG
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
You cannot select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4 Commits
1 Branch
0 Tags
29 KiB
PowerShell 100%
 
main
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'main'
${ noResults }
Go to file
AaronFalzon a5109b0aba Update 'UpdateXG_Cert_CF.ps1' 2 years ago
.gitignore Created ignore file 2 years ago
README.md Created Readme 2 years ago
UpdateXG_Cert_CF.ps1 Update 'UpdateXG_Cert_CF.ps1' 2 years ago

README.md

CHON CWPSA Script

This script is to automate the processes of creating/renewing a LetsEncrypt Cert, uploading it to a Sophos XG Firewall & applying it to all WAF rules.

Setup

Requirements

Requires Posh ACME https://www.powershellgallery.com/packages/Posh-ACME/

run the following command to install 'Start-Process powershell "Install-Module -Name Posh-ACME -Verb runAs'

for this version of the script to work your DNS records need to be with Cloudflare.

At first run of the script you will be prompted for the following information:

  • XGPass - this must be the Admin account on your XG
  • CloudFlareAPI -

First Run

New-PACertificate $certDomain -AcceptTOS