Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG Login with Captcha

I have just connected to an XG Firewall and as well as the user name and password and underneath is a captcha image with a box to type in response.

Haven't seen anything about that?



This thread was automatically locked due to age.
Parents
  • I didn't mind the addition of the captcha, although it doesn't always seem to work right. Now I've updated from 17.5.11 to 17.5.12 and it's vanished. They say it's supposed to be on WAN and not LAN, and while it was showing up on both in .11, now it's not showing up at all after the .12 update. Additionally, why don't we get an option as to turning it on or off? Very frustrating. Similar to why MFA requires you type the code after your password, and isn't a separate box, pop-up, or something.

    - Nathan Kodak

  • Unknown said:

    I didn't mind the addition of the captcha, although it doesn't always seem to work right. Now I've updated from 17.5.11 to 17.5.12 and it's vanished. They say it's supposed to be on WAN and not LAN, and while it was showing up on both in .11, now it's not showing up at all after the .12 update. Additionally, why don't we get an option as to turning it on or off? Very frustrating. Similar to why MFA requires you type the code after your password, and isn't a separate box, pop-up, or something.

     

     

    And of course, now it's back, on both LAN and WAN. There's some issues with this implementation I think.

    - Nathan Kodak

  • Hello

    There's a CLI command to control it.  But it simply does not work.

    Paul Jr

  • Hi Nathan,

    Could you please raise a support case and then share your case number with me for further investigation into the Captcha issue you are having?

    Thanks,


    Florentino
    Director, Global Community & Digital Support

    Are you a Sophos Partner? | Product Documentation@SophosSupport | Sign up for SMS Alerts
    If a post solves your question, please use the 'Verify Answer' button.
    The Award-winning Home of Sophos Support Videos! - Visit Sophos Techvids
  • This should also be an option to turn on, best practice or not, for users or admins.  Every time I think about trying XG again, I'm just being given more reasons not to, and stick to UTM.  If captcha goes to UTM, I'm uninstalling it.  There are ways around captcha and while may be a 'best practice', it's certainly not the 'best way to do it' and old tech ways of making someone just feel secure.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

Reply
  • This should also be an option to turn on, best practice or not, for users or admins.  Every time I think about trying XG again, I'm just being given more reasons not to, and stick to UTM.  If captcha goes to UTM, I'm uninstalling it.  There are ways around captcha and while may be a 'best practice', it's certainly not the 'best way to do it' and old tech ways of making someone just feel secure.

    OPNSense 64-bit | Intel Xeon 4-core v3 1225 3.20Ghz
    16GB Memory | 500GB SSD HDD | ATT Fiber 1GB
    (Former Sophos UTM Veteran, Former XG Rookie)

Children