Web configuration required to implement ssl vpn, Ssl vpn gateway configuration task list, Configuration required to implement ssl vpn – H3C Technologies H3C SecPath F1000-E User Manual

340

Web configuration required to implement SSL VPN

SSL VPN gateway configuration task list

Task Remarks

Configuring the SSL VPN service

Required.
Enable SSL VPN, and configure the port number for the SSL VPN

service and the PKI domain to be used.

Configuring Web proxy server resources

Configure at least one type of resources.
By default, no resources are configured.

Configuring TCP application resources

Configuring IP network resources

Configuring a resource group

Required.
Configure a resource group and add resources to the resource
group.
By default, resource groups named autohome and autostart exist.

Configuring local users

Required.
Configure local SSL VPN users—users that need to pass local
authentication to log in to the SSL VPN system.
By default, a local user named guest (without a password) exists, in

denied state.

Configuring a user group

Required.
Configure a user group, add local users to the user group, and

select the resource groups that the user group can access.
By default, a user group named Guests exists, and no users and
resource groups are assigned for it.

IMPORTANT:

You can also add a local user to existing user groups when creating

the local user.

Viewing user information

Optional.
View the online user information and the history user information,

and log out online users.

Performing basic configurations for the
SSL VPN domain

Optional.
Configure the domain policy, caching policy, and bulletin

information for the SSL VPN domain.

Configuring authentication policies

Optional.
Configure authentication methods and authentication parameters

for an SSL VPN domain.

IMPORTANT:

Local authentication is always enabled. To use other authentication

methods, you need to manually enable them.