Disable or Enable SDL on Internal Network

By default, the Remote Access client automatically disables Secure Domain Login (SDL) when the client detects one of these conditions:

• It is connected to an internal network.

• It is connected to the VPN domain.

• There is no network.

Until the client gets a response from the location awareness feature, the decision is based on the fact that the client has an IP address in the VPN Domain.

To enable or disable SDL on the internal network or VPN Domain:

1. Edit the $FWDIR/conf/trac_client_1.ttm file on the Security Gateway.

2. Search for: ignore_sdl_in_encdomain.

   If the property does not exist, create it.

3. Set the required value according to this table:

Value	Meaning
true	The Connect window of the Remote Access client does not appear when the client detects one of these conditions: It is connected to an internal network. It is connected to the VPN domain. There is no network. This is the default value.
false	The Connect window of the Remote Access client always appears.

1. Save the file.

2. Install policy on the Security Gateway.