Connecting from a Public Computer

Firefox Web browser. You configure by group whether or not to include the Firefox browser and the browser’s default Web address. Firefox preferences, such as saved passwords, are retained for the next session.

Shared network drives. Icons that provide access to shared network drives. The user can download files from a network share by dragging a file onto the KioskFTP icon, as described in “Configuring File Shares for Kiosk Mode” on page 141.

Icons that provide access to the VNC client, Remote Desktop, Telnet 3270 emulator, and SSH. You configure by group the clients to be included in the kiosk session.

For information about using the clients, see the following sections:

“Remote Desktop client” on page 130

“SSH Client” on page 130

“Telnet 3270 Emulator Client” on page 131

“VNC Client” on page 131

“Gaim Instant Messenging” on page 131

If the user’s browser is configured to use a proxy server, users connected using kiosk mode use the browser’s proxy setting.

To allow users access to corporate resources using kiosk mode, it must be enabled.

To enable kiosk mode

On the Global Cluster Policies tab, under Access options, select Enable kiosk mode.

If this check box is clear, users cannot use kiosk mode and the option is not available from the Web portal page.

When kiosk mode is enabled, users can connect using the Web portal page.

To log on to the Firebox SSL VPN Gateway using kiosk mode

1Use the logon page to connect, as described in “Connecting Using a Web Address”. Click A public

computer.

The WatchGuard Secure Access logon dialog box appears.

2Enter your network logon credentials and click Login.

Note

Note: Users logged on using kiosk mode can use the FTP protocol to download files from the corporate network. Files that are downloaded using the kiosk session cannot be returned to the corporate network.

Creating a Kiosk Mode Resource

Kiosk mode is configured using kiosk resources that define the file shares and applications users have access to when they log on in kiosk mode. By default, kiosk mode is disabled. To enable it, the resources are configured and then added to user groups.

Kiosk mode is configured on the Access Policy Manager tab and then added to the groups in the left pane.

Note

Note: If the user has general Internet access before making a connection, the user can browse the Internet from the Firefox browser in the Web browser window, unless a network resource is defined that denies access to the Internet.

Administration Guide

127

Page 136 Page 138
Page 137
Image 137
WatchGuard Technologies SSL VPN manual Creating a Kiosk Mode Resource, To enable kiosk mode, Computer
Page 136 Page 138

SSL VPN specifications

WatchGuard Technologies offers a robust SSL VPN solution designed for secure remote access to corporate networks. As businesses increasingly rely on a remote workforce, the need for secure and reliable connectivity has never been more critical. WatchGuard's SSL VPN features advanced security technologies that ensure data integrity and confidentiality while enabling seamless access to applications and resources.

One of the standout features of WatchGuard's SSL VPN is its user-friendly interface. The solution is designed to simplify the user experience, enabling employees to connect to the VPN with minimal complexity. With a straightforward setup process, users can quickly establish secure connections from various devices, including laptops, smartphones, and tablets. This flexibility supports a diverse workforce, allowing employees to work from different locations without compromising security.

In addition to its ease of use, WatchGuard's SSL VPN is built on robust security technologies. It employs end-to-end encryption to safeguard data in transit, ensuring that only authorized users can access sensitive information. By utilizing SSL (Secure Sockets Layer) protocols, the VPN creates a secure tunnel between the user’s device and the corporate network, protecting against potential threats such as eavesdropping or man-in-the-middle attacks.

Moreover, WatchGuard Technologies includes multiple authentication options, adding another layer of security. The solution supports multi-factor authentication (MFA), requiring users to provide additional verification beyond just a password. This could involve mobile device verification or biometric authentication, significantly reducing the risk of unauthorized access.

Another key characteristic of WatchGuard’s SSL VPN is its integration with other WatchGuard security solutions. Businesses can benefit from a comprehensive security posture by leveraging firewalls and intrusion prevention systems along with the SSL VPN. This holistic approach ensures that remote connections are continually monitored and secured against evolving cyber threats.

Scalability is also a crucial aspect of WatchGuard's SSL VPN, accommodating growing organizations with changing needs. The solution can easily scale to support an increasing number of remote users without compromising performance. With robust performance metrics, businesses can ensure that even during peak usage times, the VPN remains responsive and reliable.

In summary, WatchGuard Technologies' SSL VPN solution combines ease of use, robust security, flexible authentication, and scalability. These features make it an ideal choice for organizations seeking to provide secure remote access to their employees while maintaining a strong defense against cyber threats. With WatchGuard, businesses can confidently navigate the challenges of a digital landscape, ensuring their network remains secure as they embrace remote work.
Top Page Image Contents