This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN remote access - secure?

Hi
One question, I plan to set up the SSL VPN remote access by using this guide
https://support.astaro.com/support/index.php/ASG-V7_guide_remote-access_ssl_en
If I use this, is this a configuration where Certificates are being used to login or is this only username/password. I fint this a but unclear in the doc. I see that the client downloads a certificate. Is this certicate used to identify the client?

/Andy.L

This thread was automatically locked due to age.

Parents

0 Krycek over 14 years ago

Well that depends on how you want it... either way if anyone has a username and password they can download the ssl-client from userportal. Of course if you only allow it from internal then they can only download it from inside your LAN. I was just pointing out that if you know a username and password you could get access to the certificate somehow.
Cancel
Vote Up 0 Vote Down

Cancel
0 andy.l over 14 years ago in reply to Krycek

Hi
Yeah, I understand. That will always be a risk. But I guess as long as I enable the userportal only from the LAN interface, and have secure, complex userpasswords I would be reasonable safe.
Currently I'm only considering to use this on the Astaro I'm currently running on my home DSL connection, so the risk of any on my internal LAN are able to access the certificate i fairly slim.

/Andy.l
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 andy.l over 14 years ago in reply to Krycek

Hi
Yeah, I understand. That will always be a risk. But I guess as long as I enable the userportal only from the LAN interface, and have secure, complex userpasswords I would be reasonable safe.
Currently I'm only considering to use this on the Astaro I'm currently running on my home DSL connection, so the risk of any on my internal LAN are able to access the certificate i fairly slim.

/Andy.l
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data