Helllo,
we have a strange and not reproducible problem with our SSL-VPN Remote Acces with 2 Factor Authentication with Sophos Authenticator. We are currently using Firmware version 9.413-4 on a clustered sophos SG330.
Sometimes users that are already two-factor enabled can not login. Everything seems okay and the QR in the sophos authentication database seems to be valid and correct (we also compared it with a second device - the numbers shown are exacly the same ....).
If a user with such an issue is logging on to the user portal with his account and password (without the second factor) he is shown a new QR code immeadetely. This code is different from the old one. If he scans the code he gets new numbers and can login again.
For me it looks like the connection of the user to his old QR code gets lost in some way (still visible in the authentication services) and everything needs to be reinitialised. We have no clue when and why this happens but we get 1-2 cases every week (usually 10-20 users are connected concurrently).
We have opened a support case with sophos 2 1/2 weeks ago and besides being informed that the issue is escalated nothing happens. We have also seen very poor support in the past with another unresolved issue.
Has somebody seen this issue as wall and can give us some hints how to resolve it ...
Best regards,
Bernd Feist
This thread was automatically locked due to age.