Shopping Cart

No products in the cart.

Install Sophos Connect Client on macOS

In this guide, we’ll show you how to download the Sophos Connect client from your Sophos XG Firewall and install and set it up on a Mac.

Sophos Connect Client – Series

This article is part of a series that will give you everything you need to get started with the Sophos Connect client.


  • Firmware SFOS 17.5 or higher
  • macOS Client Operating System: macOS 12.12 or higher

1. download Sophos Connect Client

Before you can start the installation, you must first download the Sophos Connect client for macOS. This step is currently only possible as an administrator via the XG Firewall. To do this, perform the following steps:

  1. On the XG Firewall, navigate to the menu item VPN > Sophos Connect Client .
  2. In the Client Data section > Sophos Connect Client, click Download.

A zip file named will then be saved on your Mac. If you unzip this zip file, you will find three files in it:

  • scadmin.msiSophos Connect Admin Tool
  • Sophos Connect.pkgSophos Connect Client for macOS
  • SophosConnect.msiSophos Connect Client for Windows

For this tutorial we need the Sophos Connect.pkg package at this point.

2. install the Sophos Connect client

Start the installation of the Sophos Connect client by double-clicking the Sophos Connect.pkg file. When the installation is finished, you can exit the installation wizard by clicking Schliessen.

3. download connection file

When you start the Sophos Connect client for the first time, it asks you for a connection file to import. This file can currently only be downloaded by an administrator through the XG Firewall. To do this, perform the following steps:

  1. On the XG Firewall, navigate to the menu item VPN > Sophos Connect Client .
  2. Click the Verbindung exportieren button at the bottom of the browser to download the connection file for the IPsec connection.
  3. In your download folder you should now find a *.tgb file.

4. set up the Sophos Connect client

Setting up the Sophos Connect client takes just a few steps:

  1. Open the Sophos Connect client and click Import Connection.
  2. Select the connection file with the extension *.tgb from your hard disk. The connection will then be listed under Connections.
  3. Now click Connect to establish the IPsec connection.
  4. In the next step, log in with your VPN user.

If you have entered the correct user data, a VPN connection should now be established successfully. Remember to click Disconnect again in the Sophos Connect client as soon as you no longer need the VPN connection.

IPsec connection with macOS on-board means

With macOS, it is also possible to establish an IPsec connection without the Sophos Connect Client. All you need is your own account for the XG Firewall user portal to download the IPsec configuration.

  1. Log in to the user portal of your XG Firewall with your account.
  2. Under the Configuration for IPsec VPN client for Apple iOS section, click Install.
  3. Once the profile is downloaded, you can open it with a double click.
  4. You will then be asked if you really want to install the Sophos profile. Confirm this process with Fortfahren.
  5. Your IPsec connection is now automatically created in the settings under Network. All you have to do now is click on Verbinden.