This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos XG Firewall - IPSEC VPN MFA ISSUE with OTP PIN

Hi,

I have XG125 (SFOS 19.5.1 MR-1-Build278) and IPSEC Remote Access for the users with internal OTP MFA. Remote users started to report disconnecting the VPN during the day, BUT also the need for MFA PIN to be entered multiple times a day.

For example user connects at 8am and is connected until 5pm. I see no "terminated" etc issues in the logs, BUT the user needs to enter the PIN like 3x times to keep the VPN alive. Is this correct behavior? I haven't found anything regarding this in the OTP settings.

I was suspecting WAN connectivity issues, but users are reporting that the connection is still alive during the Sophos client popup request for the PIN. So my guess is that if the user misses the popup for the pin the VPN will gets disconnected.

I hope I explained this well enough.

Is anyone else experiencing similar issues?

Thanks,

Martin



This thread was automatically locked due to age.