Usage of the ssl-vpn interface, 2 usage of the ssl-vpn interface – Kerio Tech Firewall6 User Manual
Page 365
24.2 Usage of the SSL-VPN interface
365
24.2 Usage of the SSL-VPN interface
For access to the interface, most of common graphical web browsers can be used (however, we
recommend to use Internet Explorer version 6.0 or Firefox/SeaMonkey with the core version 1.3
and later). Specify URL in the browser in the
https://server/
format, where server represents the DNS name or IP address of the WinRoute host. If SSL-VPN
uses another port than the default port for HTTPS (443), it is necessary to specify the used
port in the URL, e.g.
https://server:12345/
Upon a connection to the server, the SSL-VPN interface’s welcome page is displayed localized
to the language set in the browser. If the language defined as preferred is not available, the
English version will be used.
For access to the network by SSL-VPN, authentication to the particular domain at the login
page by username and password is required. Any operations with shared files and folders are
performed under the identity of the user currently logged in.
Figure 24.4
Clientless SSL-VPN — login dialog
Method of specification of the login name depends on the configuration of the particular user
account in WinRoute (see chapter
•
If an account is defined in the local user database, the username must be specified
without the domain (e.g. jsmith).
Warning
Only accounts authenticated in Active Directory or Windows NT domain (NT/Kerberos 5
authentication) can be used for access to the SSL-VPN interface. Accounts authenti-
cated only in WinRoute (Internal user database authentication) cannot be used to ac-
cess SSL-VPN. For details on local user accounts, refer to chapter
•
If it is a mapped Active Directory domain which is set as primary (or if only one do-
main is mapped), it is possible to specify username either leaving out the domain
(jdolittle) or with the domain ([email protected]).