Scribd Logo
Upload

Welcome to Scribd!

  • Configure SSL VPN for Android with OpenVPN Connect

    Uploaded by

    Gopi Bal
    476 views7 pages
    Configuring SSL VPN for Android

    Original Title

    How_to_Configure_SSL_VPN_for_Android_Devices_using_OpenVPN_Connect

    Copyright

    © © All Rights Reserved

    Available Formats

    PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document
    Configuring SSL VPN for Android

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    476 views7 pages

    Configure SSL VPN for Android with OpenVPN Connect

    Uploaded by

    Gopi Bal
    Configuring SSL VPN for Android

    Copyright:

    © All Rights Reserved
    Download as PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 7

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    How To Configure SSL VPN for Android


    Devices using OpenVPN Connect

    Applicable Cyberoam Version: 10.04.02 Build 527 onwards


    Overview
    OpenVPN Connect is the official full-featured Android VPN client for the OpenVPN Access Server,
    Private Tunnel and OpenVPN Community, developed by OpenVPN Technologies, Inc. OpenVPN
    Connect can be used to establish SSL VPN connection between any Android Device and Cyberoam.

    Scenario
    Configure SSL VPN for Android Device using OpenVPN Connect.

    Cyberoam Configuration
    Configure SSL VPN from Cyberoam Web Admin Console. Configuration requires read-write
    permission for the relevant features.

    Configure SSL VPN with Tunnel Access Mode in Cyberoam


    To know how to configure SSL VPN in Cyberoam, refer to the article How To Configure SSL VPN in
    Cyberoam.

    Android Configuration
    Configure OpenVPN Connect in your Android Device by following the steps below.

    Step 1: Download and Install OpenVPN Connect


    Download OpenVPN Connect and install it on your Android Device.

    Step 2: Download Cyberoam SSL VPN Client Configuration in Local System


    To download Cyberoam SSL VPN Client Configuration, follow the steps below.

    Access Cyberoam SSL VPN Portal using the URL - https://<WAN IP address of
    Cyberoam:port> and login to the Portal. If Two Factor Authentication is enabled, refer to the
    article How to Login in a Two Factor Authentication Environment?

    Click Download SSL VPN Client Configuration MAC Tunnelblick to download the client
    configuration and save it in your system.

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    A compressed file called ClientBundle.tgz is downloaded and saved at your mentioned location.

    Note:
    The SSL VPN Client Configuration for MAC Tunnelblick is compatible with Macintosh, iOS and
    Android platforms.

    Step 3: Extract ClientBundle.tgz to your local system


    Extract ClientBundle.tgz to obtain the following files.
    -

    UserPrivateKey.key
    UserCertificate.pem
    RootCertificate.pem
    Client.ovpn

    Step 4: Configure client.ovpn file


    You need to edit the configuration of the client.ovpn file ONLY IF any or both of the following criteria
    are applicable:

    If your OpenVPN Connect version is below 1.1.11 Build 88.


    If your network has Two Factor Authentication configured.

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    OpenVPN Connect Version below 1.1.11 Build 44


    If your OpenVPN Connect version is 1.1.11 Build 44 or above, skip to step 5.
    Double click client.ovpn to open it in a text editor.

    If the Protocol for SSL VPN connection is configured as TCP, then set the parameter proto as
    TCP. If the Protocol is configured as UDP, no change required.
    Set the parameter reneg-sec to 3600.

    Note:
    For OpenVPN Connect version 1.1.11 Build 44 and below, it is mandatory to set the value of
    reneg_sec to 3600, and set proto according to the protocol being used for SSL VPN connection. For
    more information, please refer to the links given below:
    Sourceforge
    OpenVPN

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    Two Factor Authentication Configured


    If Two Factor Authentication is not configured in your network, skip to Step 5.
    Double click client.ovpn to open it in a text editor and add the parameter:
    ping-restart 65

    Step 5: Transfer SSL VPN Configuration files to Android Device


    Transfer the files mentioned above (UserPrivateKey.key, UserCertificate.pem, RootCertificate.pem,
    Client.ovpn) from your local system to your Android Device.

    Step 6: Import SSL VPN Configuration to OpenVPN Connect in Android Device

    Launch OpenVPN Connect and click Settings.

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    Click Import to import the client.ovpn file included in the SSL VPN Configuration files.

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    Step 7: Connect to Cyberoam


    Once the files are imported, a new VPN profile gets created pertaining to configuration mentioned in
    client.ovpn. Enter Password and click Connect to establish connection with Cyberoam. If Two Factor
    Authentication is enabled, refer to the article How to Login in a Two Factor Authentication
    Environment?

    How To Configure SSL VPN for Android Devices using OpenVPN Connect

    The above configuration establishes an SSL VPN connection between Cyberoam and Android Device
    using OpenVPN Connect.

    Document Version: 1.3 12/09/2013

    You might also like