OpenVPN Tunnel

Configuring the OpenVPN Tunnel in the Harmony SASE Administrator Portal

  1. Access the Harmony SASE Administrator Portal and click Networks.

  2. Select the network.

  3. For the gateway to which you want to add the OpenVPN tunnel, click and click Add Tunnel.

    The Choose Tunnel Protocol window appears.

  4. Select OpenVPN Tunnel and click Continue.

    The OpenVPN Tunnel window appears.

  5. In the Name field, enter a name for the tunnel.

  6. Save the Access Keys credentials.

    Caution - Save the Access Keys credentials before you click Apply. Otherwise, regenerate the Access Keys:

    1. To regenerate the Access Keys, in the newly created OpenVPN tunnel, click > Edit Tunnel.

    2. In the Access Keys section, click .

      The system regenerates the Access Key ID and Secret Access Key values.

    3. Click Apply.

  7. Click Apply.

    The system creates an OpenVPN tunnel and displays it in the Tunnels section.

Installing a VPN and Configuring the OpenVPN Tunnel on the Device

  1. Access the Harmony SASE Administrator Portal and click Networks.

  2. Select the network.

  3. In the gateway where you added the OpenVPN tunnel, click and then click Configuration.

  4. Copy the command and run it in the terminal window on the device.

    The system downloads the saferx-openvpn-client.pvpn configuration file.

    Note - If the device's operating system does not support a terminal window, copy the command from https until download. Paste the command in a browser address bar and press Enter. The system downloads the saferx-openvpn-client.ovpn configuration file.

  5. On a macOS device:

    1. Download and install a VPN client. Check Point recommends Tunnelblick VPN client.

    2. Drag and drop the openvpn-config.ovpn file into the client to add the configuration.

    3. To connect to the VPN, in the Username field, enter the Access Key ID that you copied when you created the tunnel.

    4. In the Password field, enter the Secret Access Key that you copied when you created the tunnel.

    5. Click OK.

  6. On a Windows device:

    1. Download and install the OpenVPN Client. Check Point recommends https://openvpn.net/community-downloads/

    2. Click the OpenVPN icon.

    3. Click Import > Import file...

    4. Select the downloaded file saferx-openvpn-client.ovpn

    5. After you import the file, right-click the OpenVPN client and then click Connect.

      The OpenVPN client window appears.

    6. In the Username field, enter the Access Key ID that you copied when you created the tunnel.

    7. In the Password field, enter the Secret Access Key that you copied when you created the tunnel.

      Note - If the Secret Access Key starts with $6$perimeter81$, it indicates that the key is encrypted.

      Regenerate the access keys. See step 6 in Configuring the OpenVPN Tunnel in the Harmony SASE Administrator Portal.