Hi There,
Putting this here to save someone else some time in the future. We recently moved our users to a new O365 tenant. In this new tenant we had enabled MFA. After we did that, I started having an issue with outlook not working if I restarted outlook up after I had used the Sophos SSL(openvpn) client to connect. I would have to open outlook first to get Authenticated, then startup VPN. I dont have the exact message any more but basically outlook popped up a Can't connect Message(and Please enter your password in lower right of outlook) when I had started the VPN client before starting outlook.
After doing some googling and looking at other firewall vendors forums who also use a OpenVPN based SSL client, it appears that you have to set the gateway IP under the Sophos SSL Adapter or whatever yours is called under the network adapter listing. Without doing this, the Sophos adapter's connectivity status will show "unknown" (instead of "Internet Access". Setting the gateway address under tcp IPv4 properties in the Sophos adapter remedies that. I just used the gateway address a netstat -rn showed me as the default route.
If I was using split tunneling this would not be an issue(I'm assuming), but I tunnel all traffic through the ssl vpn client.
So I think its a combination of Outlooks / MFA authentication process, windows 10 network location service, and the the openvpn client running in fully tunneled mode.
I hope this helps someone in the future. If anyone else has any other ideas, please chime in.
Thanks,
-Scott
This thread was automatically locked due to age.
