Requirements

You will need the following to perform the operations described in this technical note:

Prior connection of the SNS firewall to a directory

The SNS firewall must be connected to a directory so that it can display the lists of users and user groups in its modules. By doing so, the users and user groups allowed to set up SSL VPN tunnels can be determined during the configuration of the SSL VPN.

You can check this connection in the SNS firewall's administration interface in Configuration > Users > Authentication > Available methods. An LDAP line must appear in the grid. For more information, refer to the section on Authentication in the v4 or v3 user guide of the SNS version used.

Permissions to access the SNS firewall’s captive portal

The SNS firewall’s captive portal must be enabled and users who will connect via SSL VPN must be able to access it. In particular, such access will allow them to retrieve the VPN configuration.

You can check the configuration of the captive portal in the SNS firewall's administration interface in Configuration > Users > Authentication, Captive portal and Captive portal profiles tabs. For more information, refer to the section on Authentication in the v4 or v3 user guide of the SNS version used.

Prior configuration of components involved in multifactor authentication (optional)

If you intend to use multifactor authentication for SSL VPN connections, the following components must already be configured:

  • The selected multifactor authentication solution,

  • The RADIUS server, with which the SNS firewall can be associated with the selected multifactor authentication solution.