For access to the interface, most of common graphical web browsers can be used (however, we recommend to use Internet Explorer version 6.0 or Firefox/SeaMonkey with the core version 1.3 and later). Specify URL in the browser in the
https://server/
format, where server represents the DNS name or IP address of the WinRoute host. If SSL-VPN uses another port than the default port for HTTPS (443), it is necessary to specify the used port in the URL, e.g.
https://server:12345/
Upon a connection to the server, the SSL-VPN interface's welcome page is displayed localized to the language set in the browser. If the language defined as preferred is not available, the English version will be used.
For access to the network by SSL-VPN, authentication to the particular domain at the login page by username and password is required. Any operations with shared files and folders are performed under the identity of the user currently logged in.
Method of specification of the login name depends on the configuration of the particular user account in WinRoute (see chapter 15 User Accounts and Groups):
If an account is defined in the local user database, the username must be specified without the domain (e.g.
jsmith).Warning
Only accounts authenticated in Active Directory or Windows NT domain (NT/Kerberos 5 authentication) can be used for access to the SSL-VPN interface. Accounts authenticated only in WinRoute (Internal user database authentication) cannot be used to access SSL-VPN. For details on local user accounts, refer to chapter 15.2 Local user accounts.
If it is a mapped Active Directory domain which is set as primary (or if only one domain is mapped), it is possible to specify username either leaving out the domain (
jdolittle) or with the domain (jdolittle@company.com).If it is a mapped Active Directory domain which is not set as primary, the domain must be included in the username specification (e.g.
sidneywashington@usoffice.company.com).
The way the SSL-VPN interface is handled is similar to how the My Network Places system window is used.
At the top of the page, an entry is available, where location of the demanded shared item (so called UNC path) can be specified — for example:
\\server\folder\subfolder
The path may be specified regularly even if folder or/and file names include blank spaces — for example:
\\server\my folder\my file.doc
All shared items in the domain can be browsed using a so called navigation tree on the left. The navigation tree is linked to the entry (this means that in the entry, the path associated with the selected item in the tree is displayed, and vice versa — if a path is entered in the line, a corresponding item is selected in the tree).
Right under the navigation tree, actions available for the specified location (i.e. for the selected item or folder) is provided. The basic functions provided by the SSL-VPN interface are download of a selected file to the local host (the host where the user's browser is running) and uploading a file from the local host to a selected location in the remote domain (the user must have write rights for the destination). Downloading or uploading of more than one file or of entire folders is not possible.
For files and folders, any standard functions, such as copying, renaming, moving and removals, are still available. Files and folders can be copied or moved within the frame of shared files in the particular domain. In the current path, new folders can be created and empty folders can be removed.
If at least one antivirus is enabled in WinRoute (see chapter 13 Antivirus control), all files transferred by the SSL-VPN interface can be scanned for viruses.
In default configuration, only files uploaded to hosts in remote private networks are scanned. For connection speed reasons, files downloaded to local hosts from remote networks are not scanned by antiviruses (files downloaded from private networks are considered as trustworthy). Settings of antivirus check can be changed in antivirus configuration — see chapter 13.5 Scanning of files transferred via Clientless SSL-VPN.
For quick access to frequently used network items, so called bookmarks can be created. Bookmarks work on principles similar to the Favorites tool in Windows operating systems.
The Add to bookmarks option creates a new bookmark for the current path (the path displayed in the URL entry). It is recommended to label by a short unique name — this will help you with the bookmarks maintenance, especially if more bookmarks are used. If the name is not specified, the bookmark will be listed in the list of bookmarks under the UNC path.
The Folder administration option allows editing or removing of created bookmarks as well as creating of a new bookmark for any path (folder). The destination path can be specified manually or it can be browsed in the folder tree and it is also possible to use an existing bookmark as a starting point.
In this section, several examples of manipulation with files and folders via the SSL-VPN interface.
- Creating folders
The dialog allows creating of a new folder in the specified location. By default, the current path specified in the URL line is indicated. However, it is possible to enter a new path.
Use the button to select a new path (folder) where the new folder will be created:
use a bookmark,
select it in the folder tree.
- Renaming a file or a folder
Renaming is very simple — use the dialog to specify a new name for the selected folder or file.
- Copying or moving files/folders
The SSL-VPN interface allows copying or moving of any number of files or/and folders at a time. First, select files and folders by checking the fields next to their names (checking of the field in the header selects all files and folders in the current location).
In the copy/move dialog, specify the destination path (folder) or select it in the tree or it is also possible to use a bookmark (see above).
- Moving of files / folders
It is also possible to remove any number of folders or/and files as well as all files and folders in the current path.
- Downloading files
Downloading of files from remote shared folders to the local host is performed in the same way as usual downloading of files from web pages. Simply click on a file to open a standard download dialog.
It is not possible to download whole folders or multiple files at a time.
- Uploading files
The upload dialog allows selection of a destination folder (by default, the folder which is currently opened in the SSL-VPN interface is set). Destination folder can be specified manually, selected in the folder tree or loaded from a bookmark (see above).
Use the File entry to specify full path to a local file. Files can be also selected by using the button (click this link to open the standard system dialog for opening of a file).
It is not possible to upload whole folders or multiple files at a time.
