Users aren't authenticated
If remote access SSL VPN users aren't getting authenticated, check the following settings.
Authentication services
- Go to Authentication > Services.
- Under SSL VPN authentication methods, make sure you've selected the correct authentication servers.
Authentication servers
- Go to Authentication > Servers.
- Make sure the server settings are correct.
- Click Test connection at the bottom of the page to see if you can establish a connection with the server.
Multi-factor authentication
-
In the firewall:
- Go to Authentication > Multi-factor authentication.
- Make sure you've selected All users or the users and groups you selected in remote access SSL VPN policies.
-
In the Sophos Connect client:
-
The Sophos Connect client supports Call and Push-based MFA. Users must enter the password in the following format:
<password><otp>
-
The Sophos Connect client only supports ASCII characters in usernames. It doesn't support certain sequences of special characters. See Sophos Connect: Supported characters.
-