Skip to content
Last update: 2022-05-25

Clientless SSL VPN

You can allow users to access services and areas, such as network hardware, endpoint devices, and file sharing, using a browser.

To gain access to clientless SSL VPN, users don't need to install VPN clients. Use clientless SSL VPN policies to provide restricted access to resources and services rather than allow access to entire systems or networks.


You must create bookmarks for the services you want to allow. You can then configure clientless access policies specifying the users (policy members) and the bookmarks.

You can specify the IP address of the endpoint to which you want to allow access, the connection type, and the security settings.

The bookmarks appear on the user portal. Users can access the services through these bookmarks on VPN on the user portal.


To allow access to clientless SSL VPN for remote users, go to Administration > Device access and allow WAN access to the user portal.

Assign bookmarks to clientless SSL VPN policies to give users access to your internal networks or services. For example, you can allow access to file sharing or allow remote desktop access.

Users can access bookmarks through VPN in the user portal.

Bookmark groups

Bookmark groups allow you to combine bookmarks for easy reference.

For example, you can create a group with all the bookmarks for remote desktops rather than add these individually to a clientless SSL VPN policy.

Back to top