Jump to:navigation, search
Wiki

User administration SSL-VPN

From Securepoint Wiki





notempty
Dieser Artikel bezieht sich auf eine nicht mehr aktuelle Version!

notempty
Der Artikel für die neueste Version steht hier

notempty
Zu diesem Artikel gibt es bereits eine neuere Version, die sich allerdings auf eine Beta-Version bezieht

































































Create and configure users (permissions) for SSL-VPN

Last adaptation to the version: 14.1.1(11.2025)

New:
Last updated: 
notempty
This article refers to a Beta version
Access: UTM-IP:Port or UTM-URL:Port
Port as configured at Network / Appliance Settings / Webserver
Default-Port: 11115
i.e.: https://utm.ttt-point.de:11115
Default: https://192.168.175.1:11115 Authentication User Area Benutzer / Add User Tab SSL-VPN


Caption Value Description Edit user UTMuser@firewall.name.fqdn Authentication User
SSL-VPN settings for users
Use group settings: No If the user is a member of a group, the settings can be adopted from there. The following settings are then greyed out here and are to be configured in the Authentication Users Area Groups menu.
Client downloadable in the user interface Yes The Securepoint VPN Windows client can be downloaded from the user web interface (accessible via port 1443 by default). The port is configurable in the → Network →Server settingsTab Server settings Button Webserver / User Webinterface Port: : 1443.
SSL VPN connection: RW-Securepoint Selection of a connection created in the VPN SSL-VPN menu.
Client certificate: CC Roadwarrior A certificate must be specified that the client uses to authenticate itself to the UTM.
It is also possible to use ACME certificates.
Remote Gateway: 192.168.175.1 (Example-IP) External IP address or DNS resolvable address of the gateway to which the connection is to be established.
Redirect Gateway:
 by Default-Route-Splitting
notempty
New as of v14.1.1
 All data traffic is routed through the tunnel. The VPN tunnel acts as the primary default gateway. If the tunnel does not respond, the regular default gateway is used.
by replacing the default gateway (deprecated) All data traffic is routed through the tunnel. Completely replaces the default gateway. Without an active VPN tunnel, there is no internet connection.
Off Only destinations behind the VPN are routed through the tunnel. The default gateway is used for all other destinations
Installer
notempty
New as of v14.1.1
  • ARM-64 version available
  • Portable x64 and ARM-64 versions available
  • Windows client available

  • The buttons are only displayed for users who have already been created.
    		•  Downloads an installation program that allows you to either
    • install the current Windows VPN client or, alternatively,
    • download and use the Windows VPN client as a portable version (without installation).

    The installed client updates itself automatically when new updates are available, regardless of the UTM version.

    Configuration Downloads the configuration files for any VPN clients. The file contains the necessary configuration files and certificates in the local_firewall.securepoint.local.tblk folder.
    Configuration with certificate
    notempty
    New as of v14.0.1
    		 Downloads the configuration file for any VPN client.
    The certificates are written directly to the ovpn file.
    The file name contains the user name and
    notempty
    v14.1.1
    the type of file (installer, portable, config, or inline)
    Retrieved from "https://wiki.securepoint.de/index.php?title=UTM/AUTH/Benutzerverwaltung_SSL-VPN_v14.1.1&oldid=105517"