Thread Info
  • State Suggested Answer
  • +1 person also asked this people also asked this
  • Locked Locked
  • Replies 7 replies
  • Answers 3 answers
  • Subscribers 31 subscribers
  • Views 10608 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL-VPN

Aline Carvalho

Hello everyone!

I have to prevent my company users from logging in through multiple machines with SSL-VPN. I tried to use MAC Binding but it didn't work ("MAC Binding option is only supported with client base SSO. SSL VPN client, Captive Portal and Client Authentication Agent (CAA) is not supported.")

With this information how can I do that, to force my users to use only the company notebook to conect to the VPN?



This thread was automatically locked due to age.
Parents
  • 0

    Hi,

     

    the mac address can be spoofed anyway, so it's not a good information to prevent connection from others devices if it's critical for you.

    Perhaps with some restrictions on the company notebook to prevent user to find the certificate, the password and so, but security by obfuscation is not good neither.

    I don't think you can really prevent a user to install a VPN client on another machine and log from it.

Reply
  • 0

    Hi,

     

    the mac address can be spoofed anyway, so it's not a good information to prevent connection from others devices if it's critical for you.

    Perhaps with some restrictions on the company notebook to prevent user to find the certificate, the password and so, but security by obfuscation is not good neither.

    I don't think you can really prevent a user to install a VPN client on another machine and log from it.

Children
No Data