How to add Sophos UTM/SG firewall login credentials

For Auvik to successfully connect to Sophos firewalls using SSH, the login credentials must be entered in a specific format.

When configuring login credentials in Auvik, use the following values:

Field	Value
Username	`loginuser`
Password	Password configured for `loginuser`
Enable Password	Root/sudo password

Important: The username must be entered as loginuser. Other administrator accounts are not supported for CLI collection.

Sophos UTM uses the loginuser account for SSH access. Administrative privileges are obtained after login using the root/sudo credentials.

When configuring login credentials in Auvik, use the following values:

Field	Value
Username	`admin`
Password	Password configured for `admin`

Important: The username must be entered as admin.

Before adding credentials to Auvik, verify that SSH access is enabled on the firewall.

Navigate to Management > System Settings > Shell Access.
Verify that SSH access is enabled.
Confirm that the Auvik collector's IP address is permitted in Allowed Networks.
Verify the SSH daemon is listening on the expected port (TCP 22 by default).

Verify that SSH administrative access is enabled.
Confirm the Auvik collector can reach the management interface.
Verify any administrator access restrictions permit connections from the collector.

After the credentials are saved, Auvik will automatically attempt to authenticate to the firewall.

If authentication fails:

Verify SSH access is enabled on the firewall.
Confirm the collector IP address is allowed to access the management interface.
Verify the correct username is being used (loginuser for UTM/SG or admin for XG).
Confirm the password and enable password are correct.
Test the credentials directly using an SSH client such as PuTTY.
Verify the firewall is not configured to use a non-standard SSH port.

If authentication continues to fail after verifying these settings, contact Auvik support for further assistance.

How can we help?