This guide helps you configure step by step remote access to Sophos UTM using the Sophos Connect client and the Secure Sockets Layer (SSL) protocol. SSL remote access in UTM provides security by a double authentication using X.509 certificates, and username and password. It uses the TCP port 443 to establish an encrypted tunnel to your organization, giving your users access to internal resources.

To configure and establish SSL remote access connections over the Sophos Connect client, an administrator must do as follows:

  1. Create a user or user group to use remote access.
  2. Configure the SSL remote access connection in the UTM.
  3. Provide users with the Sophos Connect client and configuration files.

    There are two methods:

    • Enable the UTM User Portal for the remote access users to download the installer and configuration files.

    • Send the installer and configuration file to users.

End users must do as follows:

  1. Install the Sophos Connect client on their endpoint devices.

  2. Import the configuration files into the client and establish the connection.

Users can download the Sophos Connect client for Windows and macOS, the configuration file, and this configuration guide. Users of other operating systems, such as Linux, can download the configuration files for their operating system. Android and iOS users can download the OpenVPN configuration.