Add 2FA to a VPN using Sophos UTM: User set up

Asset 33

Add two factor authentication to a VPN using Sophos UTM: Part two

Posted on 18 February 2019 by Beaming Support

Add two factor authentication to a VPN to help make sure that only those who should have access to your corporate network are able to log in to it remotely.

Once you have set up your SSL VPN with 2 factor authentication on the Sophos UTM, follow the below steps to set up the SSL VPN client and use 2 factor authentication for logging in.

Missed the first part of this tutorial? Find out how to set up 2FA for your VPN from the server side.

This can be used from a Windows or Mac device.

  1. Log in to the UTM user portal on the device you would like to install the VPN on.
  2. Once logged in, go to the ‘Remote Access’ tab and download the client for the device.
  3. Once the client has downloaded, open it and click Next, then I Agree.
  4. Click Install and if you get a further popup, click install again.
  5. When the installer has finished, click Next and Finish.
  6. You will notice an icon appear on the taskbar that looks like a traffic light. This is the VPN client software now running on the device.
  7. Open the Google Authenticator App on your phone and make a note of the code. Note that this changes every 30 seconds.

 

Google authenticator for VPN 2FA

 

8. Double click the traffic light icon to connect to the VPN. This will prompt you for login details.  Your login details will be DomainUsernameDomainPassword + 2FAcode E.G. If your server details were User1 and $unb33ftrackMar$, your VPN details would be User1 and $unb33ftrackMar$274472 (in this example).

VPN 2FA log in

9.  The traffic light icon will then turn green and Windows will give you message that it is connected.

10. To disconnect from the VPN, double click the icon and choose Disconnect.

Found this useful?

Beaming is an Internet Service Provider for businesses so we’re experts in networking and all-things connectivity. Subscribe to receive our how-to guides, cyber security advice and business research direct to your inbox once a month.

  • This field is for validation purposes and should be left unchanged.

Business cyber security advice.

Straight to your inbox every month.

  • How-to guides to boost productivity and efficiency
  • Changes in voice and internet tech that your business should know
  • Cyber security advice anyone can follow

  • This field is for validation purposes and should be left unchanged.