Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 5 replies
  • Subscribers 1 subscriber
  • Views 13702 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL VPN Customization of Client (Shortcuts, Config file destination)

StephanG
Hello,

we finally decided to remove local admin rights from our colleagues. But when we install the client on a notebook we have to use the local administrator (or a user with admin rights) to install the client.
That's not the problem.

The problem is that the shortcut is installed into the install user's start menu (which is the administrator) and not into the global startmenu.

So the user cannot see the shortcut after all.

I thought about packaging the SSL VPN Client and add/modify the following reg keys.

Remove it from the "autostart"
HKLM\Software\OpenVPN-GUI
edit the config var to %localappdata%\Sophos SSL VPN Client\config
(they did it with the log var why don't they change the config var)

and the config is copied via a job into the right directory

Has anyone already tried this ?

If you want to vote for it. Here is the request:
Destination of shortcut & config when installing SSL VPN Client

Greets
Stephan


This thread was automatically locked due to age.
  • 0
    I managed to build an escript for Frontrange DSM that installs the client, changes the registry and copies the config from a share to the right destination.
  • 0
    I hope BruceKConvergent, or someone else that's tried the scripted installation by GPO, sees this and comments on whether that avoids this issue.

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0 in reply to BAlfson
    Bob, that KB is only for the UTM Endpoint, not the VPN Client.

    Regarding the Shortcut "issue" ...  There's probably a way to script the shortcut fixes, etc. but I don't believe the VPN Client supports any sort of scripted deployment at all.  If this is a commercial license that you are running under (and it sounds like it is or should be at any rate) start a support case with Sophos; they would be able to tell you if the client install supports scripting of any sort.

    ETA:  It looks like the OP figured out a workaround as I thought.  It would be interesting to know if there were a version or a way to script the install in a similar way to the Endpoint client, though.  I can say generally users self-deploy the client with little trouble most of the time, guess that's why this hasn't really come up with my customers.

    CTO, Convergent Information Security Solutions, LLC

    https://www.convergesecurity.com

    Advice given as posted on this forum does not construe a support relationship or other relationship with Convergent Information Security Solutions, LLC or its subsidiaries.  Use the advice given at your own risk.

  • 0
    Ah, yes, that's the downside of using do=getdaily here - I sometimes mis-interpret the question because I'm doing this while working on other stuff and don't read the question closely enough. [:O]

    I thought that in V9, the client no longer had to be installed by an administrator - but I haven't setup a new client with the V9 SSL VPN yet, and I haven't tested.  ANy input from others?

    Cheers - Bob
     
    Sophos UTM Community Moderator
    Sophos Certified Architect - UTM
    Sophos Certified Engineer - XG
    Gold Solution Partner since 2005
    MediaSoft, Inc. USA
  • 0
    Hi steppe,
    have you logged in as administrator install the client and logged off?
    or 
    have you logged in as user install the client with a right click and runas Administrator?

    The last one functions right and the shortcut is in the users startmenue.

    Greets
    firebear
Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML