Hi all, I have just installed the 2 user test of AS as a Hyper-V machine in a Windows Server 2012 R2 environment, all seems to work well, all test users can connect from home, map drives/RDP etc.
I have pretty much left the settings as default from the install, so how secure would this be?
I have also noted I can connect as a different user on the same install of OpenVPN Connect software just by accepting the certificate, should that happen?
Thanks
How secure is Access Server out the box?
-
HenrysCat
- OpenVpn Newbie
- Posts: 3
- Joined: Sat Jan 06, 2018 11:47 am
-
novaflash
- OpenVPN Inc.
- Posts: 1073
- Joined: Fri Apr 13, 2012 8:43 pm
Re: How secure is Access Server out the box?
Quite secure, but in the field of security there is always room for improvement of security, at the cost of compatibility and ease of use. I would at the very least recommend you look at securing root account if necessary, securing openvpn account, and reviewing your HTTPS cipher suite string, and installing a valid SSL certificate.
See our security recommendations page;
https://docs.openvpn.net/getting-starte ... tallation/
See our security recommendations page;
https://docs.openvpn.net/getting-starte ... tallation/
I'm still alive, just posting under the openvpn_inc alias now as part of a larger group.