Security remains the cornerstone of the Sophos ecosystem. This client integrates seamlessly with Sophos Firewall’s multi-factor authentication (MFA) requirements. When a user attempts to connect, the client can prompt for a one-time password (OTP) generated by the Sophos Intercept X app or other standard authenticators. This ensures that even if credentials are compromised, unauthorized access to the internal network is prevented.
msiexec /i "sophosconnect 2.5.0 ga ipsec and sslvpn.msi" AUTO_START=1 /quiet sophosconnect 2.5.0 ga ipsec and sslvpn.msi
| Feature | IPSec (IKEv2) | SSL VPN (OpenVPN-based) | | :--- | :--- | :--- | | | Excellent (kernel-mode) | Good (user-mode) | | NAT Traversal | Good (uses UDP 4500) | Excellent (TCP 443) | | Multi-Factor Auth | Supported via RADIUS | Native support | | Roaming | Excellent (seamless IP changes) | Moderate (full renegotiation) | | Firewall Friendliness | Moderate (needs UDP) | Excellent (mimics HTTPS) | | Best for | Site-to-site, power users | Web-heavy, restricted networks | Security remains the cornerstone of the Sophos ecosystem