vpnsetup.ini file

Introduction

The vpnsetup.ini file is used to configure the installation of the SN VPN Client Exclusive from a file, rather than passing command-line properties to MSI.

IMPORTANT
Due to Microsoft MSI installer constraints, as opposed to previous versions of the software, the vpnsetup.ini file may no longer be located in the same directory as the installer, but should be in the C:\Windows folder.

The vpnsetup.ini file is used to define the following parameters:

• Software activation parameters

• Parameters of the TrustedConnect Panel

• PKI parameters for token, smart card, and certificate management

• General operating parameters

• System log parameters

• Other parameters

The names of the parameters for the vpnsetup.ini file are identical to those of the MSI installer’s properties (see chapter Parameters and properties of the MSI installer), the only difference being that they are not case-sensitive (no difference is made between lowercase and uppercase characters).

It can be edited using a standard text editor (e.g. Notepad). Just like any other ini file, it is organized into sections. The parameters must be entered in the appropriate section, as specified below.

NOTE
The MSI installer’s installation and VPN configuration properties, APPLICATIONROOTDIRECTORY, TGBCONF_ADMINPASSWORD, NOAUTORUN, TGBCONF_PATH, and TGBCONF_PASSWORD have no equivalent in the vpnsetup.ini file.

[Activation] section

The [Activation] section uses the following parameters:

• OSAUrl (see section OSAURL)

• OSAPort (see section OSAPORT)

• OSACert (see section OSACERT)

• ActivMail (see section ACTIVMAIL)

• AutoActiv (see section AUTOACTIV)

• License (see section LICENSE)

• NoActivWin (see section NOACTIVWIN)

[Dialer] section

The [Dialer] section uses the following parameters:

• UseDialerByDefault (see section USEDIALERBYDEFAULT)

• DialerMinimize (see section DIALERMINIMIZE)

• DialerDefs (see section DIALERDEFS)

• VpnLogPurge (see section VPNLOGPURGE)

• TokenOutHandle (see section TOKENOUTHANDLE)

• DialerBehavior (see section DIALERBEHAVIOR)

• GinaBehaves (see section GINABEHAVES)

[PKIOptions] section

The parameters defined in the [PKIOptions] section are used to specify how the software should use smart cards, tokens, and certificates:

• SmartcardRoaming (see section SMARTCARDROAMING)

• PKCS11Only (see section PKCS11ONLY)

• KeyUsage (see section KEYUSAGE)

• NoCACertReq (see section NOCACERTREQ)

• PKICheck (see section PKICHECK)

• X509DirectoryString (see section X509DIRECTORYSTRING)

• DnPattern (see section DNPATTERN)

[AddRegKey] section

The [AddRegKey] section is used to define the general operating parameters:

• BtnBehaviorTC (see section BTNBEHAVIORTC)

• MenuItemTC (see section MENUITEMTC)

• RestartGuiTC (see section RESTARTGUITC)

• NoPinCode (see section NOPINCODE)

• MenuItem (see section MENUITEM)

• RestrictConfAdmin (see section RESTRICTCONFADMIN)

• NoSplitTunneling (see section NOSPLITTUNNELING)

• NoSplitDNS (see section NOSPLITDNS)

• ForceLocalTraficToTunnel (see section FORCELOCALTRAFICTOTUNNEL)

• IkeStart (see section IKESTART)

• NestedTunnel (see section NESTEDTUNNEL)

[Config] section

The [Config] section uses the following parameter:

• SignFile (see section SIGNFILE)

[Logs] section

The [Logs] section is used to define options for system logs. This section uses the following parameters:

• SystemLogOutput (see section SYSTEMLOGOUTPUT)

• SystemLogSyslogServer (see section SYSTEMLOGSYSLOGSERVER)

• SystemLogSyslogPort (see section SYSTEMLOGSYSLOGPORT)

[VirtMDriver] section

The [VirtMDriver] section uses the following parameter:

• RoutingMode (see section ROUTINGMODE)

Sample vpnsetup.ini file

[Activation]
OSAUrl=192.168.217.102/osace_activation.php
OSAPort=80
OSACert="ABCDE...."
activmail=john.doe@company.com
AutoActiv=1
License=123456-123456-123456
NoActivWin=1

[Dialer]
UseDialerByDefault=1
DialerMinimize=5000
DialerDefs=01000000
VPNLogPurge=3
TokenOutHandle=30
GinaBehaves=1
DialerBehavior=1

[PKIOptions]
PKICheck=1
SmartcardRoaming=1
NoCACertReq=0
KeyUsage=1
PKCS11Only=1
X509DirectoryString=14
DnPattern=company

[AddRegKey]
BtnBehaviorTC=1
MenuItemTC=3
RestartGuiTC=1
NoPinCode=1
MenuItem=4
RestrictConfAdmin=1
NoSplitTunneling=1
NoSplitDNS=1
ForceLocalTraficToTunnel=1
IkeStart=1
NestedTunnel=1

[Config]
SignFile=1

[VirtMDriver]
RoutingMode=1

[Logs]
SystemLogOutput=7
SystemLogSyslogServer=syslogserver.company.com
SystemLogSyslogPort=5514