Use the steps in this topic to install the SSL VPN-Plus client on a remote Linux site.

Prerequisites

Install Linux TCL and TK packages on the remote computer.

You must have root privileges to install the SSL VPN-Plus client.

Procedure

  1. On the remote client site, open a browser window, and type https://ExternalEdgeInterfaceIP/sslvpn-plus/, where ExternalEdgeInterfaceIP is the IP address of the Edge external interface where you enabled the SSL VPN-Plus service.
  2. Log in to the portal using the credentials of the remote user.
  3. Click the Full Access tab.
  4. Click the name of the installer package, and save the linux_phat_client.tgz compressed file on the remote computer.
  5. Extract the compressed file. The linux_phat_client directory is created.
  6. Open the Linux CLI and change to the linux_phat_client directory.
  7. Run the $./install_linux_phat_client.sh command.

What to do next

Log in to the SSL VPN GUI with the credentials specified in the Users section.

Attention:
  • Two-factor RSA authentication is not supported for logging in to the SSL VPN client on Linux operating systems.
  • SSL VPN Linux client CLI does not validate server certificates. If server certificate validation is required, use the SSL VPN GUI for connecting to the gateway.

The SSL VPN Linux client validates the server certificate against the browser's certificate store by default. If server certificate validation fails, you are prompted to contact your system administrator. If server certificate validation succeeds, a login prompt is displayed.

Adding a trusted CA to the trust store (for example, Firefox certificate store) is independent of the SSL VPN work flow.