F3726, F3211, F3174, R5135, R3816-HP Firewalls and UTM Devices VPN Configuration Guide-6PW100
329
560BRecommended configuration procedure
Ste
p
Remarks
1. 929HConfiguring the SSL VPN service
Required.
Enable SSL VPN, and configure the port number for the SSL
VPN service and the PKI domain to be used.
2. Configure the resources for users to access:
{ 930HConfiguring Web proxy server resources
{ 931HConfiguring TCP application resources
{ 932HConfiguring IP network resources
Configure at least one type of resources.
By default, no resources are configured.
3. 933HConfiguring a resource group
Required.
Configure a resource group, and add resources to the
resource group.
By default, resource groups named autohome and autostart
exist.
4. 934HConfiguring local users
Required.
Configure local SSL VPN users—users that need to pass
local authentication to log in to the SSL VPN system.
By default, a local user named guest (without a password)
exists, in denied state.
5. 935HConfiguring a user group
Required.
Configure a user group, add local users to the user group,
and select the resource groups that the user group can
access.
By default, a user group named Guests exists, and no users
and resource groups are assigned for it.
You can also add a local user to existing user groups when
you create the local user.
6. 936HViewing user information
Optional.
View the online user information and the history user
information, and log out online users.
7. 937HPerforming basic configurations for the SSL
VPN domain
Optional
Configure the domain policy, caching policy, bulletin
information for the SSL VPN domain.
8. 938HConfiguring authentication policies
Optional.
Configure authentication methods and authentication
parameters for an SSL VPN domain.
Local authentication is always enabled. To use other
authentication methods, manually enable them.