What You'll Need
- Administrator access to the Sophos XG/XGS firewall web interface
- API access enabled on the firewall
- The firewall hostname or IP address accessible from Clariti
- ~5 minutes to complete setup
- Your Clariti account with adapter management permissions
Get Your Credentials
Log in to the Sophos XG/XGS firewall web admin console. Navigate to Backup & Firmware > API and ensure the API configuration service is turned on.
For authentication, the adapter uses the same administrator credentials you use to log in to the firewall web interface. For security best practice, create a dedicated read-only admin account:
- Go to Authentication > Users and create a new user
- Assign the user an administrator profile with read-only access
- Use these credentials in Clariti
You will also need the firewall's hostname or IP address that Clariti can reach over HTTPS.
Enter Credentials in Clariti
| Value from vendor console | Paste into Clariti field |
|---|---|
Firewall admin username | Username |
Firewall admin password | Password |
Firewall hostname or IP | Host |
Verify Connection
Click Test Connection in Clariti. A successful connection returns a green checkmark. The first data sync typically completes within a few minutes.
Troubleshooting
- 401 Unauthorized — Verify the admin username and password are correct. Password changes on the firewall require updating credentials in Clariti.
- 403 Forbidden — Ensure the API service is enabled on the firewall and the admin account has appropriate access permissions.
- Timeout — Verify the firewall management interface is network-reachable from Clariti over HTTPS (port 4444 by default). Clariti retries automatically.