SDL for SmartConsole-Managed Clients
To create an SDL-enabled client:
-
Make a self-extracting client package.
-
In Options> Advanced, select Enable Secure Domain Logon (SDL).
-
In the Administrationtab, generate the client and then distribute it.
If you give users a client MSI without SDL enabled, each user must manually enable it and restart the computer.
|
Note - SDL is not supported on a site that uses a CAPI certificate. |
To help users enable SDL on a client:
-
Right-click the client icon and select VPN Options.
-
In Options> Advanced, select Enable Secure Domain Logon (SDL).
-
Click OK.
-
Restart the computer and log in.
To enable Remote Access Clients to use SDL:
-
On SmartConsole, open the policy to be installed on Endpoint Security VPN clients: File> Open.
-
Open the Desktoptab.
-
Add inbound and outbound rules to allow the NetBIOS over TCP/IP service group:
-
Source and Destination = Domain Controller and Remote Access VPN
-
Service = NBT
-
Action = Allow
-
-
Install the policy.