Important note about SSL VPN compatibility for 20.0 MR1 with EoL SFOS versions and UTM9 OS. Learn more in the release notes.

This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect losing connection profiles when second user logs in

Many, many users [1,2,3] report that Sophos Connect loses profiles under various condition. In my case it is extremely easy to replicate.

Windows 11 Pro.

1) User #1 adds a .ovpn profile to Sophos Connect. This works fine if it is used.

2) User #1 locks the PC.

3) Another uses logs in, then logs out.

4) User #1 unlocks the PC

The profile will be gone. This is 100% repeatable. It occurs even if the second user has disabled Sophos Connect to run at startup.

What is the fix to this?

[1]  Sophos Connect VPN Sporadically Forgetting Saved Credentials 

[2]  Sophos Connect Losing Connections/Profiles 

[3]  Sophos Connect Client - disappearing SSL VPN connection 



This thread was automatically locked due to age.
Parents
  • Sophos Connect does not support Multi-User Devices. 
    The issue you are stating are not related to this behavior. 

    __________________________________________________________________________________________________________________

  • Thank you for the response. I see this now:

     Sophos Connect with multiple users on the same PC 

    A few followups:

    1) This is a notable limitation. My primary use case for the VPN is so users can work from home PCs (which are often shared), yet access the work internal network. Is there a sound technical reason for this limitation?

    2) The old Sophos VPN software I used for years did not have this limitation. Is there a way to roll back to it?

    3) I see in the other thread a workaround is to use OpenVPN.  I don't think we use autoprovisioning. Is there somewhere I can learn more about the other differences?

  • From a security perspective, it would be a bad idea to allow home pcs to connect to your network, as you cant control the setup at all. This is an easy way into your network, as the administrator does not control the machine at all (could be unpatched, unregulated system with "full access to everything). 

    From a technical perspective, you can use what ever VPN app you want. SSLVPN based on OpenVPN, so you can also connect openvpn itself to the firewall. The "OVPN" file from the VPN portal is compatible with OpenVPN. 

    __________________________________________________________________________________________________________________

Reply
  • From a security perspective, it would be a bad idea to allow home pcs to connect to your network, as you cant control the setup at all. This is an easy way into your network, as the administrator does not control the machine at all (could be unpatched, unregulated system with "full access to everything). 

    From a technical perspective, you can use what ever VPN app you want. SSLVPN based on OpenVPN, so you can also connect openvpn itself to the firewall. The "OVPN" file from the VPN portal is compatible with OpenVPN. 

    __________________________________________________________________________________________________________________

Children