Issue
After you upgrade to Fireware v12.10.1, authentication to the Firebox or mobile VPN with the AuthPoint server might fail.
When this issue occurs, you see this entry in the audit log:
Error: 201.145.010 - Timeout to authenticate second factor.
A defect in Fireware v12.10.1 Build 688941 prevents the Firebox from updating WatchGuard Cloud with device status and information, including AuthPoint authentication capabilities. A Firebox attempts to update its status in WatchGuard Cloud after you make changes to the configuration with Policy Manager, Fireware Web UI, or other management methods.
In response to this issue, WatchGuard has removed Fireware v12.10.1 from distribution.
AuthPoint authentications that use RADIUS resources are unaffected.
Workaround/Solution
There are three temporary workarounds to this issue:
Reboot the Firebox. For more information, go to Reboot or Shut Down Your Device in Fireware Help.Disable WatchGuard Cloud on the Firebox, wait 30 seconds, then re-enable it.Recreate the Firebox resource in AuthPoint. For more information, go to Configure MFA for a Firebox in AuthPoint Help.
Any subsequent configuration change, or disruption to the WatchGuard Cloud connection, reintroduces the AuthPoint authentication problem. If this happens frequently, consider configuring a scheduled reboot for early morning or downgrade to Fireware v12.10.
WatchGuard will re-release Fireware v12.10.1 as soon as a fix for this issue is available.
