Setting Up Multifactor Authentication Sophos VPN Client

These instructions include details for setting up MFA access for the Sophos VPN Remote Client.

MFA is available on request, please contact us to turn on MFA for your company


Step 1: To begin, navigate to the personal login web portal URL.

Note: This link is provided by your EpiGrid Reseller to all customers. This is the same link that allows users to change their own password.

If the link cannot be located, contact














Step 2: Login using your Sophos VPN client credentials. (usernames are case-sensitive)

You will be automatically redirected to a page with a QR code.













Step 3: Download and open the Google Authenticator app on your mobile device and select the + sign to add.

Note: we have found that the Google Authenticator app works best, where other authenticator apps may have issues.

Scan the QR code. You will now have a code in your Authenticator app to use with the Sophos VPN client.


Step 4: Open the web portal page back up and select "Proceed to Login"


Step 5: Login using your username (usernames are case-sensitive) and password, however, this time, enter the rolling code at the end of your password.


Step 6: After logging into the web portal again, proceed to the Sophos VPN client.


Step 7: Open the Sophos VPN client and disconnect if connected. Click the Gear Icon and delete the existing connection.










The screenshot above may not be the same for every Sophos VPN user.


Step 8: Next, import the new .PRO file. Click the blue button that says "Import Connection".











Step 9: Browse to the .PRO file that was provided by your EpiGrid reseller. This connection file will require a One Time Password to connect.






Step 10: When connecting, enter your Username, then your Sophos VPN Password, then enter the One-Time-Password code from your Authenticator app on your device.


















You may have to enter your username and password a few times during the initial login process.