Hello,
I've setup OTP for users before for SSL VPN. Note: when the SQL vulnerability hit last month, I made sure the hotfix was applied and reset all users and I temp disabled SSL VPN. I've now updated to SFOS 17.5.12 MR-12 and deleted the old OTP tokens. I'm now trying to create a new OTP for users. I log into the user portal, add the QR code to the Sophos authenticator app and then click proceed to login. I try to login with the user's pass+authenticator code, but it fails. If I login to the user portal again without the code it takes me to the same save QR code page again. I've tried deleting and re-creating the user too but get the same issue. I tried disabling OTP settings and re-enabling but no change.
I made sure OTP settings are correct enabled under: Authentication>OTP>Settings>
- One Time Password: On
- Auto-create OTP tokens for users: On
- OTP required for these users and groups: VPN users.
- Enable OTP for facilities: Web portal and VPN users.
I is there a step I'm missing? Or has the OTP changed since the latest firmware update?
Kind regards
Aaron
This thread was automatically locked due to age.
