Jump to:navigation, search
Wiki

User administration SSL-VPN

From Securepoint Wiki




























































Create and configure users (permissions) for SSL-VPN

Last adaptation to the version: 14.1.1(11.2025)

New:
notempty
This article refers to a Beta version

12.6 12.4 12.2.4 11.8.5 11.7

Access: UTM-IP:Port or UTM-URL:Port
Port as configured at Network / Appliance Settings / Webserver
Default-Port: 11115
i.e.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 Authentication User  Area Benutzer / Add User Tab SSL-VPN


Caption Value Description Benutzer bearbeiten UTMuser@firewall.name.fqdnAuthenticationUser SSL-VPN settings for users
Use group settings: No If the user is a member of a group, the settings can be adopted from there. The following settings are then greyed out here and are to be configured in the Authentication Users  Area Groups menu.
Client downloadable in the user interface Yes The Securepoint VPN Windows client can be downloaded from the user web interface (accessible via port 1443 by default). The port is configurable in the → Network →Server settingsTab Server settings Button Webserver / User Webinterface Port: : 1443.
SSL VPN connection: RW-Securepoint Selection of a connection created in the VPN SSL-VPN menu.
Client certificate: CC Roadwarrior A certificate must be specified that the client uses to authenticate itself to the UTM.
It is also possible to use ACME certificates.
Remote Gateway: 192.168.175.1 (Example-IP) External IP address or DNS resolvable address of the gateway to which the connection is to be established.
Redirect Gateway:
 by Default-Route-Splitting notempty
New as of v14.1.1
 All data traffic is routed through the tunnel. The VPN tunnel acts as the primary default gateway. If the tunnel does not respond, the regular default gateway is used.
by replacing the default gateway (deprecated) All data traffic is routed through the tunnel. Completely replaces the default gateway (without fallback).
Off Only destinations behind the VPN are routed through the tunnel. The default gateway is used for all other destinations
Installer
notempty
New as of v14.1.1
  • ARM-64 Version verfügbar
  • Portable x64 und ARM-64 Version verfügbar
  • Windows Client verfügbar

  • Die Schaltflächen werden nur bei bereits angelegten Benutzern angezeigt
    		•  Lädt ein Installationsprogramm herunter, mit dem man entweder
    • den aktuellen Windows VPN-Client installiert oder alternativ
    • den Windows VPN-Client als portable Version (ohne Installation) herunterladen und nutzen kann

    Der installierte Client aktualisiert sich bei neuen Updates eigenständig - unabhängig von der UTM-Version.

    Configuration Downloads the configuration files for any VPN clients. The file contains the necessary configuration files and certificates in the local_firewall.securepoint.local.tblk folder.
    Configuration with certificate notempty
    New as of v14.0.1
    		 Downloads the configuration file for any VPN client.
    The certificates are written directly to the ovpn file.
    The file name contains the user name and notempty
    v14.1.1
     the type of file (installer, portable, config, or inline)
    Retrieved from "https://wiki.securepoint.de/index.php?title=UTM/AUTH/Benutzerverwaltung_SSL-VPN&oldid=99360"