Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 3 replies
  • Subscribers 25 subscribers
  • Views 3413 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Enabling 2FA for SSLVPN enables it for Client authentication Agent as well ???

Kandarp Desai1

One of the clients has a query, if they enable the OTP for SSLVPN then they have to enter the OTP  in the CAA ( Client Authentication Agent ) as well. 

This makes it difficult for those staff who are in the office and roaming equally. Because they will have to enter the OTP every time they come to the office.

Can we keep OTP only for the VPN client and NOT for the Client Authentication Agent.



This thread was automatically locked due to age.
Parents Reply
  • 0 in reply to lferrara

    After getting in touch with the Sophos team they gave me a solution for this 

    Basically

    -Turn off auto generate otp tokens 

    -Tick the option either Remote IPSEC or SSL VPN

    - Under OTP tab , click ADD and add a random 32 numbers and choose the user and click save.

    - Under OTP tab, click the "i" button next to the user and share the OTP screenshot to the user to be scanned with Authenticator APP.

     

    These steps helped me to avoid OTP in captive and user portal and keep OTP only for VPN client.

Children
No Data