Sophos Firewall and third-party authenticators
You can use Sophos Authenticator or third-party authenticators to authenticate with Sophos Firewall.
The following table shows your sign-in options when using Sophos Firewall as a multi-factor authentication (MFA) server, and you use third-party authenticators. In these examples, you configure one-time passwords (OTP) on Sophos Firewall.
| Login Facilities | Sophos Authenticator (Android, iOS) | Google Authenticator (Android, iOS) | Duo Mobile (Android, iOS) | Okta Verify (Android, iOS) | Microsoft Authenticator - Azure MFA (Android, iOS) |
|---|---|---|---|---|---|
| User portal | Password and OTP | Password | Password and OTP | Password and OTP | Password and OTP |
| Web admin console | Password and OTP | Password | Password and OTP | Password and OTP | Password and OTP |
| SSL VPN (remote access) | Password and OTP | Password | Password and OTP | Password and OTP | Password and OTP |
| IPsec (remote access) | Password and OTP | Password | Password and OTP | Password and OTP | Password and OTP |
Restriction
On iOS and Android:
- OTP doesn't work with Google Authenticator. See Sophos Firewall: One Time Password does not work with Google Authenticator.
- The QR Code scan doesn't work with the Okta application. To add an account, enter the BASE32 secret manually.
On iOS, the QR Code scan doesn't work with Google Authenticator, Duo, and Microsoft Authenticator. To add an account, enter the BASE32 secret manually.
More resources