Guest User!

You are not Sophos Staff.

Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 1 reply
  • Subscribers 1 subscriber
  • Views 1050 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Correct VPN Remote Acces Setup for Internal and External Users

IngoPohlschneider
Hello everyone,
I am currently auditing our firewall and in this work I want to enable easier Remote Access configuration.

Currently we use the following setup:
External users: PPTP with local accounts on the ASG
Internal Users: L2TP with AD-Accounts and PSK (iOS Access required)

The L2TP setup works fine for internal users. We deploy the connection to the clients via a softwaredeployment and users have access via an AD group.

We want to enable external users to go with Windows-tools (no client install required) as well. Thats why PPTP is used (we do not want to hand out the PSK to external companies)

Is there any alternative that enables all requirements but allows both kinds of users to be managed from the AD?

For internal users "auto-deployment" is important. The users should be able to access without having to manually install/download Certs etc.

Any ideas?

Best regards


This thread was automatically locked due to age.
  • 0
    Perhaps you could use SSL VPN Remote Access. It does require a client-setup, but I would rather have your external users install a client than to use the much weaker PPTP-protocol.

    Managing several Sophos UTMs and Sophos XGs both at work and at some home locations, dedicated to continuously improve IT-security and feeling well helping others with their IT-security challenges.

    Sometimes I post some useful tips on my blog, see blog.pijnappels.eu/category/sophos/ for Sophos related posts.

Share Feedback
×

Submitted a Tech Support Case lately from the Support Portal?

Unfiltered HTML