This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Intercept X for mobile on iOS - Code invalid for Microsoft MFA - manual setup fine

Hi Community,

we recommended Intercept X for mobile for our iOS users because it is the successor of Sophos Authenticator and obviously one of only a few - if not the only - authenticators that can be used for one-time code on Sophos UTM. Well, Google Authenticator now works as it seems but as E2E encryption is missing... Anyway, of course we want to avoid using multiple authenticator apps and recommended Intercept X also for Microsoft MFA. Now as some tried to scan the code on setup they receive "Code is invalid - QR code contains no valid one-time password settings". Bam. I could verify this. However I also found that if I click on "Can't scan image" on the Microsoft setup and add the data manually to the Intercept X app, it works very well. Looks to me as a problem of the app interpreting the QR code. Is there any chance that this will be fixes in the near future? Did anyone encounter the same? I am not sure if this also affects Android because I don't have a device to test it.

By the way: I'm running iOS 16.4.1 on iPhone SE 2020

Thanks for any useful comments.
Daniel

This thread was automatically locked due to age.

Top Replies

Martin Klinder over 1 year ago in reply to Martin Klinder +2 verified

With the latest update 9.7.10.2 from 02. August 2023 the issue is solved. No error message after scanning the OTP QR code. Regarding to the Sophos release notes this was already fixed in version 9.7.7…

0 Qoosh over 1 year ago

Hi astiadmin,

Thanks for reaching out to the Sophos Community Forum.

Allow me some time to inquire internally regarding this issue. I will update you here with any additional information I am able to find.

Kushal Lakhan

Team Lead, Global Community Support
Connect with Sophos Support, get alerted, and be informed.
If a post solves your question, please use the "Verify Answer" button.

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel
0 astiadmin over 1 year ago in reply to Qoosh

Hi Kushal,

thanks for trying to help. Do you have any feedback?
Cancel
Vote Up 0 Vote Down

Cancel
0 Qoosh over 1 year ago in reply to astiadmin

After clicking "Can't scan image" I am given a "Code" and a "URL" value from the Microsoft Auth setup page, but am having some difficulty determining the correct fields to populate on the IXM application. I suspect this may be due to differences in the setup I have on the MS side.

May I ask what values are shown when you select "Can't scan image" and which fields you're populating this information into, in the IXM app?

Kushal Lakhan

Team Lead, Global Community Support
Connect with Sophos Support, get alerted, and be informed.
If a post solves your question, please use the "Verify Answer" button.

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel
0 Martin Klinder over 1 year ago

For me the same with Sophos Intercept X for Mobile latest version 9.7.9.4 on iOS . Please fix it. With other Apps (also the legacy Sophos Authenticator) it's working fine. The manual adding with the secret is no option, because the users want to keep it simple.
Cancel
Vote Up +1 Vote Down

Cancel
+2 Martin Klinder over 1 year ago in reply to Martin Klinder

With the latest update 9.7.10.2 from 02. August 2023 the issue is solved. No error message after scanning the OTP QR code. Regarding to the Sophos release notes this was already fixed in version 9.7.7 (SMSECIOS-1811). But the "Latest Version" section is only up tp 9.7.8. Very confusing.
Cancel
Vote Up +2 Vote Down

Cancel
0 Qoosh over 1 year ago in reply to Martin Klinder

It looks like the release notes are now updated for version 9.7.10 with information on SMSECIOS-1916

Resolved an issue with adding Authenticator accounts via QR code where Authenticator showed a Code is invalid error when scanning valid QR codes for Microsoft multi-factor authentication (MFA) and a few other vendors.

Kushal Lakhan

Team Lead, Global Community Support
Connect with Sophos Support, get alerted, and be informed.
If a post solves your question, please use the "Verify Answer" button.

The New Home of Sophos Support Videos! - Visit Sophos Techvids
Cancel
Vote Up 0 Vote Down

Cancel