Changing the certificate used by cOS Core's SSL VPN client/server

Last modified on 25 Nov, 2022. Revision 5
Changing the Certificate used by the SSL VPN client/server
Up to date for
Supported since
Status OK


I want to replace the default HTTPS/SSL certificate in cOS Core with one that I created, how do i do this?


Assuming that the new certificate has been already uploaded to the firewall, follow this procedure:

1. Open the configuration and go to System->Remote Management->Advanced Settings. Under WebUI->HTTPS Certificate, change the certificate to the one you want to use.

2. Deploy the change and then restart the firewall. The new configuration file for the SSL VPN client will not be generated unless a restart is done.

3. Log into the computer where the SSL client is installed and then log into the firewall from that. With a browser using HTTPS, download a new configuration file for the SSL client.

4. Start the client by running the configuration file and login with SSL VPN towards the firewall.

Connection to the firewall should now be possible with the SSL Client and the new certificate.

NOTE: This operation will change the default HTTPS certificate used for firewall WebUI management as well. It will also update the certificate for OneConnect server connections.

Related articles

Configure the Android OpenConnect client towards Clavister NetWall
23 Aug, 2022 sslvpn openconnect oneconnect android core
Configure Clavister OneConnect for Windows towards Clavister NetWall
29 Oct, 2021 sslvpn openconnect oneconnect windows
Configure Linux OpenConnect towards Clavister NetWall
5 Mar, 2021 sslvpn openconnect oneconnect linux core
Configuring SSL-VPN / OneConnect server on secondary Firewall IP address
8 Apr, 2021 core sslvpn oneconnect interfaces arp
OneConnect VPN certificate not trusted
18 Mar, 2024 onetouch sslvpn oneconnect troubleshoot certificate
Changing the certificate used by the OneConnect client/server
28 Nov, 2022 core configuration oneconnect
Avoiding cOS Core HA interruptions during configuration deployment
20 Feb, 2023 ha core idp cli cluster antivirus configuration
Configure the OpenConnect-GUI client towards Clavister NetWall
23 Aug, 2022 sslvpn openconnect oneconnect macos windows linux core