Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 7 replies
  • Subscribers 7 subscribers
  • Views 4100 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Sophos Connect vs. Sophos SSL VPN client - a new limitation regarding multiple connection options to the same firewall?

Martin Wünsch

I regret that the new VPN software "Sophos Connect" brings a deterioration in one important point. At least, I can't find a way to eliminate this shortcoming:

One cannot use the application to apply multiple identities against the same firewall. Normally, I use my Active Directory account for normal VPN access via a Sophos SG (device A). However, if I want to enter a specially protected administration network, then I have to use a local account on the Sophos SG135 (device A). Storing two access identities is now no longer possible with "Sophos Connect", because a single identity can only be set there in relation to one Sophos SG135 (device A).

With the application "Sophos SSL VPN client" you can manage and use multiple accounts for one Sophos SG.

Am I wrong?



This thread was automatically locked due to age.
Parents
  • +1

    First of all, SSLVPN uses a client certificate, which is bound to a user. So basically you authenticate with a cert and a specific user. 

    So the way, how Sophos Connect and SSLVPN (trafficlight) works, should be the same. You should be not able to use a different user with the same ovpn file. 

    __________________________________________________________________________________________________________________

  • +1 in reply to LuCar Toni

    Hello Lucar Toni,

    I think you misunderstood him, as I have the same problem here:

    we want to access a customer's XGS system with our technician laptops with a "normal" user account at that site OR with a more privileged "admin" account. As soon as we import a DIFFERENT .ovpn file for the same IP address or the same FQDN, Sophos connect replaces that config.

    This is not what we want. We want to have several entries, even if this is going to the same target. This is a very annoying characteristic of the new client.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Reply
  • +1 in reply to LuCar Toni

    Hello Lucar Toni,

    I think you misunderstood him, as I have the same problem here:

    we want to access a customer's XGS system with our technician laptops with a "normal" user account at that site OR with a more privileged "admin" account. As soon as we import a DIFFERENT .ovpn file for the same IP address or the same FQDN, Sophos connect replaces that config.

    This is not what we want. We want to have several entries, even if this is going to the same target. This is a very annoying characteristic of the new client.

    Mit freundlichem Gruß, best regards from Germany,

    Philipp Rusch

    New Vision GmbH, Germany
    Sophos Silver-Partner

    If a post solves your question please use the 'Verify Answer' button.

Children
No Data
Unfiltered HTML