Creating FortiClient VPNs
Configuring VPN connections using custom installations
Configuring the FortiGate gateway as a policy server
FortiClient Endpoint Security Version 4.0 MR1 Administration Guide
04-40001-99556-20090626
http://docs.fortinet.com/
•
Feedback
To create VPN connections using custom installations, use the VPN Editor tool to embed
the VPN tunnels into the MSI package. For more information on the VPN Editor tool, see
"Using the FortiClient VPN Editor" on page
You can configure a FortiGate gateway to work as a VPN policy server for FortiClient
automatic configuration. When FortiClient users connect to the FortiGate gateway to
download VPN policies, they are challenged for a user name and password. Configure the
FortiGate unit as follows:
1 Create a user account for each FortiClient user.
2 Create a user group and add the FortiClient users to it.
For more information about creating users and groups, see the
Administration
Guide.
3 Create a dialup VPN. See the
4 Connect to the FortiGate unit CLI and configure VPN policy distribution as follows:
config vpn ipsec forticlient
edit <policy_name>
set phase2name <phase2_name>
set usergroupname <group_name>
set status enable
end
<phase2_name> must be the name of the VPN phase 2 configuration. <group_name>
must be the name of the user group you created for FortiClient users.
Configuring VPN connections using custom installations
47.
FortiGate Administration Guide
FortiGate
for more details.
41