NETGEAR ProSafe SSL VPN Concentrator 25 SSL312 Reference Manual
Domains and Layouts 7-9
v1.0, August 2006
If your users are unable to connect via Active Directory, verify the following:
1. The time settings between the Active Directory server and the SSL VPN Concentrator must be
synchronized. Kerberos authentication, used by Active Directory to authenticate clients,
permits a maximum of a 15-minute time difference between the Windows server and the client
(the SSL VPN Concentrator). The easiest way to solve this issue is to configure Network Time
Protocol on the Date and Time screen and check that the server's time settings are also
correct.
2. Confirm that your Windows server is configured for Active Directory authentication. If you
are using a Window NT 4.0 server, then your server only supports NT Domain authentication.
Typically, Windows 2000 and 2003 servers are also configured for NT Domain aut hentication
to support legacy Windows clients.
Deleting a Domain
To delete a domain, click the Delete link in the Domains table for the domain you wish to remove.
Once the SSL VPN Concentrator has been updated, the deleted domain will no longer be displayed
in the table in the Domains table.
SSL VPN Concentrator Portal LayoutsThe SSL VPN Portal Layouts screen allows you to create a custom page that mobile users will
see when they log into the portal. Because the page is completely customizable, it provides the
ideal way to communicate remote access instructions, support information, technical contact info
or VPN-related news updates to remote users. The page is also well-suited as a starting page for
restricted users; if mobile users or business partners are only permitted to access a few files or web
URLs, the page you create will only show those links relevant to these users.
To vie w the Portal Layout screen, click Portal Layouts under the SSL VPN Portal menu on the
left navigation pane. A window similar to the following will display.
Note: The SSL VPN Concentrator “geardomain” domain cannot be deleted.