OpenVPN Access Server System Administrator Guide

More documents

Recommendations

Info

PRIVATE IP Internet Gateway / Firewall* PUBLIC IP * Internet Gateway is Optional PRIVATE IP NETWORK PUBLIC IP NETWORK OpenVPN Access Server System Administrator Guide PRIVATE IP OpenVPN ACCESS SERVER PUBLIC IP Figure 3: Access Server with Two Network Interfaces 2.2.3 One Network Interface on Public Network This configuration is most commonly seen when the Access Server is located in a data center and its purpose is to create a virtual IP network to which all VPN clients can connect in order to communicate with services deployed on the server itself. OpenVPN ACCESS SERVER PUBLIC IP PUBLIC IP NETWORK (INTERNET) Figure 4: Access Server with One Network Interface on Public Internet 7
2.3 User Authentication and Management OpenVPN Access Server can manage its own internal database and can also work with a variety of popular authentication methods. The currently supported systems are: 1. Local: Internal Database authentication 2. PAM: the system for authenticating users with accounts on the Access Server Linux host 3. Active Directory/LDAP Server 4. RADIUS Server(s) The user authentication service may reside on the same server as the Access Server (as is always the case when PAM is chosen); or it can reside on a completely separate server, as long as the server is reachable by the Access Server via either the private or public network. A typical deployment with an external user database is shown in Figure 5 below. Figure 5: Access Server Deployment with External User Database 2.4 Client Configuration Generation and Management The client files (OpenVPN client configuration file and Windows software installer) for a particular user are automatically created when the user successfully logs in to the Connect Client. This process takes place without any need for interaction from the administrator, as long as the user can authenticate against the user database chosen by the administrator during installation of the Access Server. OpenVPN Access Server System Administrator Guide 8
Page 1 and 2: OpenVPN Access Server System Admini
Page 3 and 4: TABLE OF CONTENTS 1 Introduction ..
Page 5 and 6: 1 Introduction The OpenVPN Access S
Page 7 and 8: 1.3 Deployment Overview (Quick Star
Page 9: 2.2.1 One Network Interface on Priv
Page 13 and 14: 3 Installation This section describ
Page 15 and 16: You will need to list whether this
Page 17 and 18: Getting hostname... Hostname: vpn-g
Page 19 and 20: Note that the “At a glance” rig
Page 21 and 22: 4.1.2 Log Reports The Log Reports p
Page 23 and 24: 4.2 Configuration Pages 4.2.1 Licen
Page 25 and 26: The Hostname or IP Address is the n
Page 27 and 28: https://192.168.1.20/ and the Admin
Page 29 and 30: VPN Clients (provided that the Acce
Page 31 and 32: 4.2.5 Advanced VPN 4.2.5.1 Inter-Cl
Page 33 and 34: Figure 27: Connection Security Refr
Page 35 and 36: 4.2.6 User Permissions Figure 30: U
Page 37 and 38: 4.2.7 Group Permissions Figure 31:
Page 39 and 40: 4.3.2 PAM Figure 33: PAM Authentica
Page 41 and 42: 4.3.4 LDAP Figure 35: LDAP Authenti
Page 43 and 44: 4.4.1.1 Active Profile and Edit Pro
Page 45 and 46: Figure 38: Connectivity Test page N
Page 47 and 48: 5 Connect Client The Connect Client
Page 49 and 50: Tray Icon: The tray icon is a featu
Page 51 and 52: 5.3 Rebranding the Admin UI OpenVPN
Page 53 and 54: # openssl genrsa -out new.key 1024
Page 55 and 56: 7 How to authenticate users with Ac
Page 57 and 58: 8 Failover OpenVPN Access Server ha

OpenVPN Access Server System Administrator Guide

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?