You use Authenticator to generate one-time passwords (also called verification codes) to sign in to your accounts that use multi-factor authentication.
© 1997 - 2019 Sophos Ltd. All rights reserved. Next, we'll set up the Authentication Proxy to work with your Sophos UTM. Create a radiusserverauto section and add the properties listed below. If you've already set up the Duo Authentication Proxy for a different RADIUS Auto application, append a number to the section header to make it unique, like radiusserverauto2. The Sophos OTP implementation is a tOTP (time-based OTP) therefore you can only use authenticators or hardware tokens which are designed for tOTP. The recommended authenticator program for smart-phones and tablets are 'Sophos Authenticator' or ‘Google Authenticator’. Sophos Firewall Google Authenticator issues The recent version of Google Authenticator does not work with Sophos Firewall's One-Time Password. There is a possible issue with base32 padding on Google's application that prevents OTP from working with Sophos Firewall. Sophos's OTP function is RFC compliant. Authenticator supports time-based and counter-based one-time passwords. See About one-time passwords. To start Authenticator, touch and hold the Sophos icon and then tap Authenticator.
Check with your account provider if multi-factor authentication is supported and how to enable it for your account.
Authenticator supports time-based and counter-based one-time passwords. See About one-time passwords.
Authenticator Sophos App
To start Authenticator, touch and hold the Sophos icon and then tap Authenticator.
Features:
- For time-based passwords, Authenticator shows the currently valid one-time password together with an animated icon that depicts the remaining time until the code becomes invalid and the next code is calculated.
- For counter-based passwords, tap Refresh next to the account item to generate a new one-time password. To prevent you from accidentally generating multiple codes in a row, there is a latency of a few seconds after each generation before you can generate the next code.
- To copy the current one-time password for an account to the clipboard, tap and hold the account item and then tap Copy.
- To edit the account details, tap and hold the account item and then tap Edit. For security reasons, you cannot display or edit the secret key.
- To delete an account, tap and hold the account item and then tap Delete.
Warning When you delete an Authenticator entry, you will lose the ability to generate one-time passwords for that account. This doesn’t turn off multi-factor authentication. Deleting the Authenticator entry may prevent you from signing into your account. Sophos Authenticator Windows 10
Before you delete an entry, ensure that you either have an alternative mechanism for generating one-time passwords, or an alternative mechanism to sign in to your account without multi-factor authentication.