Getting a Preshared Key or Certificate

The UTM User Portal is available to all remote access users. From this portal, you can download guides and tools for the configuration of your client. You should get the following user credentials for the User Portal from your system administrator: IP address, username, and password.

Especially for the L2TP remote access with authentication based on Preshared key, the User Portal offers the shared secret. For authentication with X.509 certificate, the User Portal offers the necessary certificate.

  1. On your mobile device, start your browser and open the User Portal.

    Start your browser and open the User Portal.

    Open the User Portal using this format: https://IP address. Example: https://218.93.117.220).

    A security note may show.

    Accept the security note. Depending on the browser, click I Understand the Risks > Add Exception > Confirm Security Exception (Mozilla Firefox), or Proceed Anyway (Google Chrome).

  2. Log in to the User Portal.

    Enter your credentials:

    Username: The username you received from your administrator.

    Password: The password you received from your administrator.

    Click Login.

  3. Go to Remote Access.

    This page can contain multiple sections, depending on the remote access connection types (IPsec, SSL, L2TP, PPTP, iOS devices) your administrator enabled for you.

    Most sections have a help icon that links to the respective configuration guide.

The available data depends on the authentication mode configured by the administrator. With preshared key, click the Display button to see the preshared key. Otherwise, a certificate is available. In the Export password field, enter a password to secure the PKCS#12 container before downloading the certificate. Note that you will need the security password of the certificate later on.

  1. Click Log out to close the User Portal session.

The rest of the configuration takes place on the remote user client. This step will require the IP address or hostname of the server, which should be supplied by the system administrator.