captcha-authentication-vpn

Allows you to turn on or turn off CAPTCHA for administrators signing in to the web admin console and for local and guest users signing in to the user portal using the VPN interfaces. The CAPTCHA is always active for the SPX portal and can't be turned off.

Administrators signing in to the web admin console and local and guest users signing in to the user portal from the WAN or VPN zones must enter a CAPTCHA. Local users are registered on Sophos Firewall and not on an external authentication server, such as an AD server.

Command

system captcha-authentication-vpn

Syntax

system captcha-authentication-vpn
[disable | enable | show] for [webadminconsole | userportal]

Options

[disable | enable | show] for [webadminconsole | userportal]

Turn CAPTCHA on or off for the web admin console and user portal for users signing in using the VPN interfaces. Default: enabled.

If you configured a site-to-site IPsec connection with the remote subnet set to Any, the CAPTCHA applies to all these tunnels. Add these to an IPsec route to ensure the CAPTCHA doesn't apply to specific remote hosts or networks. For <mytunnel>, select from the names of the original IPsec connections shown on the command-line interface.

Examples of commands to add a remote host or network are as follows: