Skip to content
Viscosity, Sophos XG SSL VPN, 2FA
Got a problem with Viscosity or need help? Ask here!
Hi.
I tried to enable 2FA in my Sophos XG for SSL VPN access. The 2FA has to be entered in this way:
Thank you and regards,
Christian
I tried to enable 2FA in my Sophos XG for SSL VPN access. The 2FA has to be entered in this way:
<vpnpassword><2fa-code>for example:
ThisIsMySecretPassword321321Is it possible to get this with Viscosity done? The option mentioned within the Knowledge Base
static-challenge "Enter Auth Code" 0does not do it the way, XG expected it.
Thank you and regards,
Christian
Hi Christian,
The latest beta version supports this, however I'm afraid we don't have any publicly available documentation for it yet. However it's fairly straight forward: simply add the advanced command below to your connection and then try connecting. For your connection something like
https://www.sparklabs.com/support/kb/ar ... n-commands
https://www.sparklabs.com/support/kb/ar ... -versions/
We'll have full documentation available upon full release of version 1.10.3.
Cheers,
James
The latest beta version supports this, however I'm afraid we don't have any publicly available documentation for it yet. However it's fairly straight forward: simply add the advanced command below to your connection and then try connecting. For your connection something like
Code: Select all
should work.#viscosity static-challenge-password "Enter Auth Code"
https://www.sparklabs.com/support/kb/ar ... n-commands
Syntax #viscosity static-challenge-password text [delimiter]For information on how to update to a beta version please see:
Specifies that Viscosity should separately prompt for a two-factor credential (such as a one-time password or PIN) and append this credential to the password sent to the server. The user will be prompted using the "text" parameter. If a delimiter (such as a special character) should be automatically added between the password and the two-factor credential, it can be optionally specified as the "delimiter" parameter. This command is designed to be used with servers using legacy authentication scripts (instead of modern challenge support) where the server expects both user's password and two-factor credential are combined. For example #viscosity static-challenge-password "Please enter your one time password" or #viscosity static-challenge-password "Please enter your one time password" "+".
https://www.sparklabs.com/support/kb/ar ... -versions/
We'll have full documentation available upon full release of version 1.10.3.
Cheers,
James
Web: https://www.sparklabs.com
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
Support: https://www.sparklabs.com/support
Twitter: https://twitter.com/sparklabs
3 posts
Page 1 of 1