Recommended Agent: On-Premise
Supported Agents: On-Premise or Self-Hosted
Is Auto-Discovered By: N/A
Can Auto-Discover: N/A
Parent/Child Type Inspector: No
Inspection via: API
Data Summary: Here
Video isn't playing? Click here.
Firmware Version v18 and Greater
The Sophos XG Inspector does not currently support Firmware version 18 or higher. We are actively working on adding this functionality.
Due to an issue with some Sophos XG firmware versions, the Sophos XG API will not support passwords with the following characters: #, $, or @. ! may also not be supported.
It is possible to successfully create the API user with a password with these characters. However, the API will fail when trying to use the user through the API. This is a known issue in the Sophos XG software that may be updated in the future.
- Navigate to System > Backup & Firmware using the left-hand menu
- Click on the API tab to set up API access for the Inspector
- Click the Enabled check box under API Configuration.
- Next, enter the IP address of the Agent under Allowed IP Address in the Search / Add text box. Hit the enter key to submit the IP address
- Note: You must allow access from the appropriate source IP which can be found by navigating to Admin > Agents > Self-Managed and selecting it from the IP column.
- Click the Apply button.
- Navigate to Configure > Authentication using the left-hand menu.
- Click on the Users tab. Click on the Add button.
- Fill in the Username, Name, Password, and Email as you choose. Note: The Username must not have any special characters, or it will break the Iwronnspector.
- Select Administrator for the User Type.
- Click on the Profile dropdown and select Create new
- Select Open Group under Group.
- Fill in the Profile Name field
- Select the Read-Only header field to select Read-Only rights under everything
- Click Save
- Go to System > Administration. Select the Device Access tab. Make certain that the HTTPS access is enabled for LAN
Inspections via VPN
If inspecting via a VPN, you will also need to enable HTTPS for VPN on the screen shown above.
We recommend deploying the Sophos XG Inspector using an On-Premise Agent. However, if a client network is serverless, you can deploy and whitelist a Self-Hosted Agent and use that Agent to run the Inspector. Please review this documentation for more information.
This Inspector runs on Port 4444.
In Liongard, navigate to Admin > Inspectors > Navigate to the Sophos XG Inspector > Select Add System.
Fill in the following information:
- Environment: Select the Environment this System Inspector should be associated to
- Friendly Name: Suggested "Sophos XG [Environment Name]"
- Agent: Select the On-premise Agent installed for this Environment
- Inspector Version: Latest
- IP Address: The IP Address of your Sophos XG console
- Port: The port number of your Sophos XG console
- Username: Username of the Liongard service account you created above
- Password: Credentials for the above Username
- Scheduling: The Inspector will default to run once a day at the time the Inspector is set up. Here you can adjust the schedule
Select Save. The Inspector will now be triggered to run within the minute.
If you would like this Inspector's data to be sent to ConnectWise and/or IT Glue, turn on Flexible Assets/Configurations for this Inspector:
- ConnectWise: Admin > Integrations > ConnectWise > Configuration Types > Confirm the "Configuration Auto-Updating" toggle is enabled
- IT Glue: Admin > Integrations > IT Glue > Flexible Assets > Confirm the "Flexible Asset Auto-Updating" toggle is enabled
For more information, please watch our How To video
To import Sophos XG Inspectors via CSV Import, navigate to Admin > Inspectors > Sophos XG > Select the down arrow icon in the top right-hand to Download CSV Import Template.
In the CSV Template, each row, starting on row three, will represent an Inspector. Fill in the following information for each Inspector you want to roll out:
- Agent.Name: This column is case sensitive. Copy and paste the associated Agent name from the Admin > Agents screen
- Inspector.Name: Enter "sophos-xg-inspector"
- Environment.Name: This column is case sensitive. Copy and paste the associated Environment name from the Dashboard screen
- Alias: Enter the Desired Friendly Name
- Config.IP: Enter the IP Address of your Sophos XG console
- Config.PORT: Enter the port number of your Sophos XG console
- Config.USERNAME: Enter the username of the Liongard service account you created in the Inspector Setup Preparation
- SecureConfig.PASSWORD: Enter the password for the above username
- FreqType: Enter "days"
- FreqInterval: Enter "1"
When ready to Import the CSV Template of Inspectors, navigate to Admin > Inspectors > Sophos XG > Select the up arrow icon in the top right-hand to Import CSV > Select your saved template.
After the successful import notification, reload your browser to find your imported Inspectors.
These Inspectors will automatically trigger themselves to run within a minute.
Updated about a month ago