VPN credentials or pre-shared key leaked, how to rotate quickly.
A leaked PSK or password is not a panic event if you had MFA, but it is a trigger to rotate everything. Order: first the compromised, then the shared, then the root.
Try this first
- 1Disable the compromised user account immediately, terminate all active sessions on the concentrator.
- 2If the PSK was shared among several people (bad practice but it happens): generate a new PSK, revoke the old one, push to all clients.
- 3Pull logs on the user and the PSK for the last 30 days, look for unexpected countries, odd hours, unusual volumes.
- 4Move to per-user certificate auth instead of shared secret to prevent a repeat.
When to bring us in
Leak from a third party or phishing campaign, and you cannot prove what was viewed: consider a data-breach notification to the AP within 72 hours. Rather notify and clear it than be late.
See also
- VPN will not connect or keeps droppingTwo main causes: your home internet or the VPN server. One quick test separates them.
- VPN connects but corporate folders are unreachableConnection says "green" but your network drives will not open. Almost always a DNS or routing issue.
- Home PC slow on VPN, fast at the officeThree suspects: home internet, VPN server limits, or routing that takes a long detour.
None of the above fits?
Describe your situation below. We pass your input plus the steps you already saw to our AI and return tailored next-step advice. If it's too risky to DIY, we'll say so.
Or skip the DIY entirely
Our Managed IT clients do not look these things up. One point of contact, a fixed monthly price, resolved within working hours.