Use the SSL VPN Full Access (PHAT) client to connect to a configured private network as a remote user. The client is supported on Windows, Mac, and Linux desktops.

Procedure

  1. On the client site, the remote user can type (https://ExternalEdgeInterfaceIP/sslvpn-plus/) in a browser window where ExternalEdgeInterfaceIP is the IP address of the Edge external interface where you enabled SSL VPN-Plus.
  2. Log in to the portal using the user's credentials.
  3. Click the Full Access tab.
  4. Click the name of the installer package from the list.
  5. Enable ActiveX controls for your browser.

    The SSL client is downloaded.

  6. Extract the downloaded files and install the client.
  7. Login to the SSL client with the credentials specified in the Users section.

    The SSL VPN server certificate is validated depending on the client operating system.

    • Windows client

      Windows client is authenticated as the Server security certificate validation option is selected by default, when the installation package was created.

      For Internet Explorer (IE) browser, add a trusted CA to the trust certificate store. If server certificate validation fails, you are prompted to contact your system administrator. If server certificate validation succeeds, a log in prompt is displayed.

      Adding a trusted CA to the trust store is independent of SSL VPN work flow.

    • Linux client

      The SSL VPN Linux client validates the server certificate against Firefox's certificate store by default. If server certificate validation fails, you are prompted to contact your system administrator. If server certificate validation succeeds, a log in prompt is displayed.

      Adding a trusted CA to the trust store i.e Firefox's certificate store is independent of SSL VPN work flow.

    • OS X client

      The SSL VPN OS X client validates the server certificate against Keychain, a database used to store certificates on OS X, by default. If server certificate validation fails, you are prompted to contact your system administrator. If server certificate validation succeeds, a log in prompt is displayed.

      Adding a trusted CA to the trust store i.e Keychain is independent of SSL VPN work flow.

    The remote user can now access the private network.