We were testing DUO MFA with LDAP authentication to our Active Directory using the Sophos SSL-VPN. Tan into the "timeout" problem and created a Radius login and server to fix this. Now we are seeing:
1. Initial validation appears to work,
2. DUO MFA request is sent to the phone for authentication .
3. Once returned, the authorization fails at final login.
I'm wondering if this is because of something changed in the way groups our handled?
All users are members of our AD Group "VPN Users
What's the missing link?
Thanks.
This thread was automatically locked due to age.