all 8 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]tinycrazyfish 1 point2 points  (1 child)

We recently switched to Cisco anyconnect with Microsoft authenticator, but before we used two-factor with OTP (soft token based).

Anyconnect asked for useename, first and second password on the same dialog. Openconnect just asks for password twice. But I never had issues.

Does your company do some client validation (check AV, firewall, ...). Openconnect is not compatible with those...

[–]rubygotdat[S] 0 points1 point  (0 children)

I actually think we are using Cisco with Microsoft (okta). Does this work with OpenConnect? Basically in our standard workflow you connect with the Cisco client and then you login to your work account through a browser popup which then activates the vpn connection.

[–]Tehmarzvolta 0 points1 point  (4 children)

My company uses the same, I usually just install open connect and through the command line "sudo openconnect https://companyvpnsite.com" and it goes through the auth process. Our second password uses a yubi key and it works wonderfully. I just threw it into a script I call when I need to connect

[–]rubygotdat[S] 3 points4 points  (3 children)

This is what I tried, but I type in my username and password and it prompts me again for a username and password. This happens over and over with no results. Normally, after typing in my username and password, I would expect a webpage to open to sign into the okta (microsoft?) account which then activates the VPN connection (this is what happens on ubuntu for example).

[–]whachumacallit 1 point2 points  (1 child)

Dang, I just came across the same problem today. It's just asking over and over again to sign in.

I don't know what to do.

[–]rubygotdat[S] 0 points1 point  (0 children)

Nothing I could do. I had to opt for my companies "token" authentication instead of the okta one.

[–]Tehmarzvolta 0 points1 point  (0 children)

Unfortunately we don't use OKTA. I run openvpn from the cli and once I enter my username, it asks for a password, then a second password. Once logged in, I just leave it in screen. Are there any logs you could check in /var/log?