#DOWNLOAD AVENTAIL VPN CLIENT SOFTWARE#
The SonicWALL Enforced Client is an OEM version of the Total Protection for Small Business software application and, because of this, is recognized as such by the Aventail SSL VPN appliance. (There is no SonicWALL-specific entry at present this will be resolved in a future firmware release.) Following is an example of the SonicWALL Enforced Client Device Profile: 4ĥ 4.
Vendor name must be selected and the Total Protection for Small Business Product name must be used. On the Aventail SSL VPN appliance, in the Device Profile definition for Windows, the McAfee Inc. In order to determine what version a client connection is running, right-click on the client s taskbar (it s the small red shield with the M in it, on the right of the taskbar) and select About. The incoming client connection must run version 4.5 or newer of the SonicWALL Enforced Client. The firmware version can also be determined by going to the System Configuration > Maintenance page. You can determine the current firmware version by logging into the Aventail Management Console (AMC) the version will display in the lower-left-hand corner of the AMC home page. This can be obtained from the Aventail Assurance portal by customers with a current software service contract for their Aventail SSL VPN appliances. The Aventail SSL VPN appliance must run firmware 8.9 or newer. The SonicWALL solutions are referenced in the conclusion to this paper and can be reviewed in detail on the SonicWALL Web site: Configuration Steps In order for a SonicWALL Aventail SSL VPN appliance to enforce client usage of the SonicWALL Enforced Client, there are a few prerequisites: 1. The information presented in this paper represents the industry experience of the SonicWALL research and development team and reflects the requirements that can be met by applying SonicWALL Aventail SSL VPN solutions combined with SonicWALL Enforced Client Anti-Virus solutions.
Both a SonicWALL Aventail SSL VPN (EX-750, EX-1600 or EX-2500) and a SonicWALL Enforced Client running on an end point device are required in order to follow the configuration steps detailed in this paper. This white paper is intended to provide step by step instruction on how the SonicWALL Aventail SSL VPN can be configured to enforce that end point devices have the appropriate version and configuration of the SonicWALL Enforced Client anti-virus solution. EPC interrogation and Zone assignment is available for all Aventail access methods, including Connect Tunnel. If not, the administrator has a number of options, including assigning the endpoint into a Default Zone or Quarantine Zone for remediation. If the incoming connection meets said criteria, the client is assigned into a defined Policy Zone. Upon first contact with a SonicWALL Aventail appliance, the endpoint is interrogated against an administrator-defined set of attributes called Device Profiles.
#DOWNLOAD AVENTAIL VPN CLIENT HOW TO#
1 SonicWALL Aventail SSL VPNs Working Together With SonicWALL End Point Security Solutions for Granular End Point Control Step by step guide on how to configure SonicWALL Aventail SSL VPNs to detect the SonicWALL Enforced Client CONTENTS Overview 2 Configuration Steps 2 Zone Options Standard (Allow) Zone for Full Access 5 Default Zone for Limited Access- Download the SonicWALL Enforced Client 9 s Quarantine Zone to Deny Access- Download the SonicWALL Enforced Client 12 a Deny Zone to Deny Access if SonicWALL 15 Enforced Client is Out of Compliance Conclusion 20Ģ Overview SonicWALL Aventail SSL VPN appliances have a feature called End Point Control (EPC) which has the ability to require that incoming clients meet certain criteria before connecting, the most common being that the incoming client be running a valid and up-to-date version of an anti-virus or anti-spyware program.