Hi Sophos Community,
I'm pleased to announce that Sophos Connect 2.4 is now available for public testing. This early access release adds support for EntraID (Formerly AzureAD) SSO support for VPN portal and client connections, when connecting to SFOS v21.5 EAP1 or newer firewalls.This is an early access build, so your feedback is welcome!
EntraID for VPN
- EntraID user authentication now supported for VPN client connections
- Setup EntraID authentication in SFOS - EntraID Firewall Documentation
- Follow this guide to get started using EntraID with Sophos Connect
Sophos Firewall v21.5: Entra ID SSO Integration for Sophos Connect
Requirements
- SFOS v21.5 EAP1 or newer - Early-access available here
- Functioning EntraID Account (Formerly Azure AD) - If you don't have one, Create a free tier account
Download
- Register for the SFOS v21.5 EAP - Sign up here
- You will be emailed the download link for v21.5 firmware and the Sophos Connect 2.4 EAP client
Or if you're already signed up:
- Download the client installer directly: SophosConnect_2.4_EAP.msi
OS Compatibility
Sophos Connect Windows OS support - Version 2.4 EAP
| Platform | Version | Architecture | Status | Notes |
| Windows Desktops | 10/11 | x86/x64 | Supported | All Windows 10/11 editions included |
| Windows Desktops | Older Versions | x86/x64 | UNTESTED | |
| Windows Servers | All Versions | x86/x64 | UNTESTED | |
| Windows Desktops | 11 | ARM | NOT SUPPORTED | ARM support coming later this year |
Known Issues
- Only English language is available in this build.
- NCL-2324 EntraID User authentication may fail in certain circumstances when reconnecting a tunnel authenticated via EntraID.
Workaround - choose "Force SSO Re-login" to workaround the event. Fixed in coming GA client version
