This guide helps you configure step by step remote access to Sophos UTM on AWS using the Sophos Connect client and the Secure Sockets Layer (SSL) protocol. SSL remote access in UTM provides security by a double authentication using X.509 certificates, and username and password. It uses the TCP port 443 to establish an encrypted tunnel to your organization, giving your users access to internal resources.

To configure and establish SSL remote access connections over the Sophos Connect client, an administrator must do as follows:

  1. Create a user or user group to use remote access.
  2. Configure the SSL remote access connection in Sophos UTM on AWS.
  3. Provide users with the Sophos Connect client and configuration files.

    There are two methods:

    • Turn on the Sophos UTM on AWS User Portal for the remote access users to download the installer and configuration files.

    • Send the installer and configuration file to users.

Users can download the Sophos Connect client for Windows and macOS, the configuration file, and this configuration guide. Users of other operating systems, such as Linux, can download the configuration files for their operating system. Android and iOS users can download the OpenVPN configuration.