Ssl vpn browser connection choices – Amer Networks E5Web GUI User Manual

If this option has not been chosen before, it must be selected first to install the
proprietary Clavister SSL VPN client application.

ii.

Connect the SSL VPN client

If the client software is already installed, selecting this option starts the client running
and an SSL VPN tunnel is established to the security gateway. This is discussed next in
more detail.

Figure 9.5. SSL VPN Browser Connection Choices

Using CA Signed Certificates

By default, cOS Core uses a self-signed certificate when it displays the dialog shown above. If it is
desirable to use a CA signed certificate, that may or may not use certificate chaining, this can be
configured on the RemoteMgmtSettings object. In other words, the certificates used for HTTPS
Web Interface access are the same ones used for SSL VPN login. Configuring these certificates is
explained further in Section 2.1.3, “The Web Interface”.

Running the Client SSL VPN Software

An SSL VPN tunnel becomes established whenever the Clavister SSL VPN client application runs.
Conversely, the tunnel is taken down when the application stops running.

There are two ways for the tunnel to be established:

•

To login by using a web browser to surf to the SSL VPN interface as described above. Once
the client software is installed, only the option to establish the tunnel is selected.

•

Once the client software is installed, it can be started by selecting it in the Windows Start
menu. The SSL VPN client user interface then opens, the user password is entered and when
OK is pressed the tunnel is established and any client computer application can then make
use of it.

Chapter 9: VPN

640