Hi. We are interested in turning on Multi-factor authentication (MFA) settings for SSL VPN Remote Access. But whenever we turn it on, the OTP for User Portal is also turned on automatically and is greyed out. So we can't turn it off unless we turn off Automatic Generation of OTP. There is no point of using MFA if we predefine it. So can we turn off MFA for User Portal while Generate OTP token with next sign-in is still ON? Thanks in advance for any update or suggestions!
Hello Nur Sakibul Huda,Thank you for reaching out to the community, the following doc will clarify the things: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp…
Hello Nur Sakibul Huda,Thank you for reaching out to the community, the following doc will clarify the things: https://docs.sophos.com/nsg/sophos-firewall/19.0/Help/en-us/webhelp/onlinehelp/AdministratorHelp/Authentication/OneTimePassword/index.html
Warning:If you don't turn on Generate OTP token with next sign-in, you must configure a hardware token for each user under Issued tokens.Note:User portal is automatically selected when Generate OTP token with next sign-in is turned on.
Thanks & Regards,
Vivek Jagad | Technical Account Manager 3 | Cyber Security EvolvedSophos Community | Product Documentation | Sophos Techvids | SMSIf a post solves your question please use the 'Verify Answer' button.