Qbik Helpsys

Prev (WinGate VPN events) Next (VPN tunnels) Up (Managing WinGate VPN)
Skip to user comments Add a comment

WinGate VPN permissions

WinGate VPN uses the WinGate Permissions system to control who can create, and manage VPN configurations in the WinGate Management console. Whenever you create a Join VPN or Host VPN configuration on the VPN Panel, WinGate VPN will register the VPN configuration as a permission object with the Permission system. This allows you to configure permissions for each individual VPN configuration you create.

WinGate VPN permissions can be set in several places:

  1. VPN Settings

    The VPN Settings, located in the Control Panel of the WinGate Management console, has a Permissions tab where you can set permissions for access and control of the VPN Settings dialog. The WinGate VPN will register the actual VPN Settings dialog as a parent permission object in the WinGate Permissions tree, in order to hold all of the host and join VPN configurations that are registered as permission objects. This parent container status allows you to set permissions on the VPN Settings dialog that will apply to all child objects (the VPN configurations that you have created on the VPN Panel).

    The WinGate VPN provides the following permissions for the VPN Settings:

    Permission

    Applies to

    Description

    Read

    VPN Settings and Children (Host VPN and Join VPN configurations)

    When set for the VPN Settings, this is minimum permission required by a user to view the actual VPN Settings dialog in the Control Panel of the WinGate Management console.

    When set against children (host VPN or join VPN configurations) this is the minimum permission required to see the host or join configuration on the VPN Panel.

    Modify local settings

    VPN Settings

    This permission allows users to modify the settings on the VPN Settings dialog. These settings include setting the Data port the WinGate VPN Node should use, and various routing options.

    Create a VPN

    VPN Settings

    This gives users the permission to create a VPN configuration on the VPN Panel. This could either be a hosted VPN, or a remote VPN that this WinGate VPN Node should join.

    Connect/Disconnect

    Children (Join VPN configurations)

    This permission allows users logged into the WinGate Management console, to action a Join VPN configuration that has been created on the VPN Panel (i.e. instigate a connection to, or disconnect from the remote VPN specified in the configuration).

    This permission can be set individually on each Join VPN configuration that you create on the VPN Panel, or you can set it in the VPN Settings and it will be applied to all Join VPN configurations that are created.

    Disconnect users

    Children (Host VPN configurations)

    This permission gives the ability for a user logged into the WinGate Management console to disconnect VPN Client Nodes that have joined to any hosted VPN configuration on this WinGate VPN server. Like the connect/disconnect permission this can be set individually on the relevant Host VPN configurations that are created in the VPN Panel.

    Delete

    Children (Host VPN and Join VPN configurations)

    This permission allows users to delete a VPN configuration that has been created on the VPN Panel.

  2. VPN Panel

    When you create a VPN configuration (either a hosted VPN or Join VPN configuration) on the VPN Panel, each configuration will have a Permissions tab where you can set permissions for that particular hosted VPN/VPN to Join.

    Since each VPN configuration is a child permission item of the VPN Settings (as mentioned in the VPN Settings section above) they can have permissions automatically set for it on the Permissions tab for the VPN Settings. These inherited permissions can be altered or removed as required by unchecking the Include inheritable permissions from parent option on the Permissions tab of the particular VPN configuration. This will remove any set permissions and allow you to tailor the appropriate permissions that will be applied to that particular VPN configuration.

    Host VPN configurations

    All Host VPN configurations have the Connect to this VPN permission. This permission will determine what user credentials remote VPN Client Nodes will have to supply in their Join VPN configuration, when they attempt to join this hosted VPN.

    Read more

Please refer to the Permissions system help for more information on using and setting permissions.

©2012 Qbik New Zealand Limited

Community content

  1. no comments yet...

Download helpfile

You can use basic Full-Text Searches against the page title and body to find matching articles. Use the following search modifiers to refine your query:

  • event management (no quotes) will find all pages containing the words "event" OR "management"
  • "event management" (with quotes) will find all pages containing the phrase "event management"
  • +event -management will find all pages containing the word "event", AND NOT the word "management"