Adding VPN Profiles



Hello. You have arrived at an outdated topic. Please click this link to be redirected to the updated Endpoint Protection Admin Guide.

To add a VPN profile:

  1. Log in to the SecureAnywhere website.
  2. Click the Mobile Protection tab. The Mobile Protection console displays with the Status tab active. 
  3. Click the Policies tab. The Policies tab displays. 
  4. Double-click the policy where you want to add a VPN profile. The Policy Details window displays with the General tab active.
  5. Click the Communication tab. The Communication tab displays.
  6. In the Category column, select VPN and click the + (plus) icon. Multiple fields display. 
  7. In the Connection name field, enter the name of the connection. This is a free-form field and is required.
  8. From the Connection type drop-down menu, select one of the following VPN connections:
    • L2TP - This is the default.
    • PPTP
    • Ipsec (Cisco)
    • Cisco AnyConnect
    • Juniper SSL
    • F5 SSL
    • SonicWALL Mobile Connect
    • Check Point Mobile VPN
    • Aruba VIA
    • OpenVPN
    • Custom SSL
  9. Based on your selection in the previous step, use the appropriately associated table below for information to complete the fields.
    (Server Account Details) If Connection type = L2TP
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    User authentication type

    Options:

    • Password - This is the default.
    • RSA SecureID

    Password for connection   authentication

    If authentication type = password.

    Shared secret

    Free-form text field, optional.

    Route all network traffic   through VPN connection

    Yes or No. No is the default.

    (Server Account Details) If Connection type = PPTP
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    User authentication type

    Options:

    • Password - This is the default.
    • RSA SecureID

    Password for connection   authentication

    If authentication type = password.

    Encryption level

    Options:

    • None - This is the default.
    • Automatic, Maximum (128 bit)

    Route ALL network traffic through VPN connection

    Yes or No. No is the default.

    (Server Account Details) If Connection type = IPsec (Cisco)
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    Account password (leave blank if password is set on the device)

    Free-form text field, optional.

    Machine authentication type

    Options:

    • Shared Secret/Group Name - This is the default.
    • Certificate

    Group name

    If Machine Authentication type = Shared Secret/Group Name, free-form text, optional.

    Shared secret

    If Machine Authentication type = Shared Secret/Group Name, free-form text, optional.

    Use hybrid identification (Authenticate with secret, name and server-side authentication)

    If Machine Authentication type = Shared Secret/Group Name, Yes or No. No is the default.

     

    Prompt user for password on   device

    If Machine Authentication type = Shared Secret/Group Name, Yes or No. No is the  default.

     

    Credentials for authenticating connection

    If Machine Authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication

    If Machine Authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand. Domain and host names that will establish a VPN

    If Machine Authentication type = Certificate, Yes or No.

    (Server Account Details) If Connection type = Cisco AnyConnect
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    Group

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default.
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand. Domain and host names that will establish a VPN

    If User authentication type = Certificate. Yes or No.

    (Server Account Details) If Connection type = Juniper SSL
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    Realm for authenticating the   connection (leave blank if realm is set on the device)

    Free-form text field, optional.

    Role for device authentication   (leave blank if realm is set on the device)

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand.  Domain and host names that will establish a VPN.

    If User authentication type = Certificate. Yes or No.

    (Server Account Details) If Connection type = F5 SSL
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication.

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand.   Domain and host names that will establish a VPN.

    If User authentication type = Certificate. Yes or No.

    (Server Account Details) If Connection type = SonicWALL Mobile Connect
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    Login group or domain (leave blank if group/domain is set on the device)

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication.

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand. Domain and host names that will establish a VPN.

    If User authentication type = Certificate, Yes or No.

    (Server Account Details) If Connection type = Check Point Mobile VPN
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and  send with authentication

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand. Domain and host names that will establish a VPN

    If User authentication type = Certificate, Yes or No.

    (Server Account Details) If Connection type = Aruba VIA
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand. Domain and host names that will establish a VPN

    If User authentication type = Certificate, Yes or No.

    (Server Account Details) If Connection type = OpenVPN
    FieldDescription

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    User authentication

    Options:

    • Password - This is the default
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand.   Domain and host names that will establish a VPN.

    If User authentication type = Certificate, Yes or No.

    (Server Account Details) If Connection type = Custom SSL
    FieldDescription

    Identifier. Reverse DNS format identifier for custom SSL VPN

    Free-form text field, required.

    Server hostname/IP address

    Free-form text field, required.

    Account username (leave blank if username is set on the device)

    Free-form text field, optional.

    Custom data

    User-managed list of Key/Value pairs.

    • To add a key/value pair, click the + (plus) sign
    • To delete an entry, highlight the entry and click the - (minus) sign.
    • Key Column: Free-form text
    • Value Column: Free-form text

    User authentication

    Options:

    • Password - This is the default.
    • Certificate

    Password for connection   authentication

    If authentication type = password.

    Credentials for authenticating connection

    If User authentication type = Certificate, a list of detected certificates.

    Include user PIN. Request PIN during connection and send with authentication

    If User authentication type = Certificate, Yes or No. No is the default.

    Enable VPN On Demand. Domain and host names that will establish a VPN.

    If User authentication type = Certificate, Yes or No.

  10. Complete the following proxy settings:
    FieldDescription

    Proxy

    Options:

    • None - This is the default.
    • Manual
    • Automatic

    Proxy server URL. Server from which to get proxy settings.

    • If Proxy = Automatic.
    • Free-form text field, required.
    Proxy server. Fully qualified address and port of proxy server.
    • If Proxy = Manual.
    • Free-form text field, required.

    Proxy port. Fully qualified port of proxy server.

    • If Proxy = Manual.
    • Free-form text field, required.

    Proxy username

    • If Proxy = Manual.
    • Free-form text field, required.

    Proxy password

    • If Proxy = Manual.
    • Free-form text field, required.
  11. Click the Save Changes button.
  12. When you are finished and ready to go live with this policy, click Promote Draft to Live.