# CHON CWPSA Script


This script is to automate the processes of creating/renewing a LetsEncrypt Cert, uploading it to a Sophos XG Firewall & applying it to all WAF rules.
## Setup

### Requirements

Requires Posh ACME  https://www.powershellgallery.com/packages/Posh-ACME/

run the following command to install 
'Start-Process powershell "Install-Module -Name Posh-ACME -Verb runAs'



for this version of the script to work your DNS records need to be with Cloudflare. 

At first run of the script you will be prompted for the following information:
* XGPass - this must be the Admin account on your XG
* CloudFlareAPI - 




###
First Run

New-PACertificate $certDomain -AcceptTOS