SSL VPN with Certificates

sdeyoung · August 2023

Hello all,

I'm trying to find a more secure way to have access to our network using certificates. We are currently using NetExtender but I was wondering if there's a better, more secure way of using this without a username/password. Some clients passwords may not be the most secure so I was thinking certificate based would be a better way to go. I don't see any way to use certificates with NetExtender (but maybe I'm missing something). I do see an option in the Global VPN Client. I am using TZ Firewalls. Any suggestions of what others are using in production would be greatly appreciated! TIA

MustafaA · August 2023

For SSLVPN there is no option such as client based certificate. If your intention is strengthening the authentication phase, you can use password complexity enforcement and/or TOTP - Time Based One Time Password, which comes build-in for SSLVPN.

MustafaA · August 2023

How do I configure 2FA for SSL VPN with TOTP?

https://www.sonicwall.com/support/knowledge-base/how-do-i-configure-2fa-for-ssl-vpn-with-totp/190829123329169/

sdeyoung · August 2023

https://community.sonicwall.com/technology-and-support/discussion/comment/18920#Comment_18920

TOTP works great! I didn't know about this. Going to start rolling this out. Thanks for that info!

Join the Conversation

SSL VPN with Certificates

Best Answers

Answers