WatchGuard Technologies Water Heater SSL VPN Manuale Utente
Configuring Properties for a User Group
92
Firebox SSL VPN Gateway
supported and do not run. If the domain controller cannot be contacted, the Firebox SSL VPN Gateway
connection is completed but the logon scripts are not run.
connection is completed but the logon scripts are not run.
Note
Important: The client computer must be a domain member in order to run domain logon scripts.
To enable logon scripts
1
Click the Access Policy Manager tab.
2
In the left pane, right-click a group and click Properties.
3
On the General tab, under Session Options, select Run logon scripts.
4
Click OK.
Note
Logon script support is restricted to scripts that are executed by the command processor, such as
executables and batch files. Visual Basic and JavaScript logon scripts are not supported
executables and batch files. Visual Basic and JavaScript logon scripts are not supported
.
Enabling session time-out
You can configure the Secure Access Client to force a disconnection with the Firebox SSL VPN Gateway if
there is no activity on the connection for a specified number of minutes. One minute before a session
times out (disconnects), the user receives an alert indicating the session will close. If the session closes,
the user must log on again.
There are three different options when configuring a session time-out value:
there is no activity on the connection for a specified number of minutes. One minute before a session
times out (disconnects), the user receives an alert indicating the session will close. If the session closes,
the user must log on again.
There are three different options when configuring a session time-out value:
• User session timeout. If you enable this setting, the Secure Access Client disconnects after the
time-out interval elapses regardless of what the user is doing. There is no action the user can take
to prevent the disconnection from occurring when the time-out interval elapses.
to prevent the disconnection from occurring when the time-out interval elapses.
• Network inactivity timeout. If you enable this setting, the Secure Access Client disconnects if no
network packets are sent from the client to the Firebox SSL VPN Gateway for the specified interval.
• Idle session timeout. If you enable this setting, the user session times out if there is no mouse or
keyboard activity on the client for the specified interval.
You can enable any of these settings by entering a value between 1 and 65536 to specify a number of
minutes for the time-out interval. You can disable any of these settings by entering a 0 (zero). If you
enter a 0, the time-out session is not activated and the setting has no effect on client connections.
If you enable more than one of these settings, the first time-out interval to elapse closes the client con-
nection.
minutes for the time-out interval. You can disable any of these settings by entering a 0 (zero). If you
enter a 0, the time-out session is not activated and the setting has no effect on client connections.
If you enable more than one of these settings, the first time-out interval to elapse closes the client con-
nection.
To enable session time-out
1
Click the Access Policy Manager tab.
2
In the left pane, right-click a group and then click Properties.
3
On the General tab, under Session options, type the number of minutes in any of these settings:
• User session timeout
• Network inactivity timeout
• Idle session timeout
• User session timeout
• Network inactivity timeout
• Idle session timeout
4
Click OK.