Sophos Connect user+password+tokencode

Hello,

If you are using a TOTP, I think we have exactly what you need. In your Sophos Connect entry, if you go in the One Time Password tab, you should be able to configure a TOTP (or link to one if you already have one in your tree), and select "Append to password" so it will automatically add the value to the password when connecting.


Regards,

@Hubert,

This is not going to work because the TOTP changes every 30 seconds and how you tell it you set a fixed code

Hello,

The "key" field you enter is not the TOTP, but the key that is used to generate the TOTP value. The application will generate a different TOTP value depending on the time step and values you entered in there. Could you try out this configuration? If it doesn't work, we would need more information to understand what you're trying to achieve.

Regards,

Hubert,

I can configure the TOTP but the client gave me an .opvn file to import but in RDM for Sophos Connect i can't use the .opvn file it must be an .scx, .tbg or ini file and he cant give me one of those

I think you might be using the wrong entry type in RDM then. If you want to use an OVPN file, the Sophos VPN entry is what you're looking for:



And then you can import your OpenVPN file:



Regards,

I know and i can import it in the Sophos VPN and configure it but then when i try to connect the vpn gives the error AUTH: Received control message: AUTH_FAILED i think the TOTP code is not working because when i manualy start sophos vpn and i fill in username + password+ TOPT it will connect

I think I found the problem, I copy paste the Key in the OTP settings and it looked ok, but I just used a tool to capute the QR code and in the OTP clickt on load form image and then saved it. And now it works.

When I looked a the Key it's the same one as I paste it in to.
The only difference I could see is that through the image the account is blank end application is Sophos SFOF

This is strange but I'm glad you've figured out the issue! As far as I know the application name and the the account name should not be required to generate the correct OTP, but maybe I'm wrong on that and that is what caused the issue.


Regards,

I think the problem was that I copied the key and paste it into the field maybe that behavior is different than when you load from an image, because after the load from image it worked