Thread Info
  • State Suggested Answer
  • Locked Locked
  • Replies 6 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 1194 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

OTP FAIL EVERY 30 DAYS

Christian Garcia2 
Good morning.

I have activated the OTP in an XG XG330 and every 20-30 days I have to reset the QR code as it starts to fail, people cannot connect to the VPN or access the user portal until I delete them and recreate the QR code, once it is reconfigured on their devices, everything works correctly again for 20-30 days.
I have checked in the authentication panel settings and I have not seen any expiration of the QR code.

Any idea why it can happen? 

On my computers I have the "Authenticator" extension installed in Chrome to be able to use the QR code, I have not located any Sophos extension / application for browsers.

Thank you!!


This thread was automatically locked due to age.
Parents Reply Children
  • 0 in reply to Christian Garcia2

    Seems like the OTP Delay is not sync up in your case. I do not have experiences with browser Addons, as i use OTP only on mobile phones. 2FA on the same device makes the 2FA kinda useless, as exploiting the device, you are using, giving you both access (password + the current valid OTP token). Therefore best practice is to use a other device for 2FA, not the same. Its like having a key chain with two keys, needed to open a door, if both keys are on the same keychain, loosing this keychain will give you access and the second key is irrelevant. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni 
    I know that it is not very safe to have the 2fA in the team but the client has wanted it that way even explaining it ...
  • 0 in reply to Christian Garcia2

    Give him the example of Sophos Intercept X for Mobile. Free tool even for privat devices and explain him, this tool is way more efficient compared to a browser based solution. 

    __________________________________________________________________________________________________________________

  • 0 in reply to LuCar Toni 
    I connected to a computer that had the fault right now and I saw that it was 15 seconds ahead of the XG time.

The otp I have it set to 30 seconds.

I understand that 30 seconds are as much if a team is 30 seconds behind or ahead of the XG, right?
Cookie Information Banner