Introduction

This guide helps you configure step by step remote access to Sophos UTM using the Sophos Connect client and the Secure Sockets Layer (SSL) protocol. SSL remote access in UTM provides security by a double authentication using X.509 certificates, and username and password. It uses the TCP port 443 to establish an encrypted tunnel to your organization, giving your users access to internal resources.

To configure and establish SSL remote access connections over the Sophos Connect client, an administrator must do as follows:

  1. Create a user or user group to use remote access.
  2. Configure the IPsecL2TPPPTPSSL remote access connection in Sophos UTM.
  3. Provide users with the Sophos Connect client and configuration files.

    There are two methods:

    • Turn on the Sophos UTM User Portal for the remote access users to download the installer and configuration files.

    • Send the installer and configuration file to users.

Users must do as follows:

  1. Install the Sophos Connect client on their endpoint devices.

  2. Import the configuration files into the client and establish the connection.

Users can download the Sophos Connect client for Windows and macOS, the configuration file, and this configuration guide. Users of other operating systems, such as Linux, can download the configuration files for their operating system. Android and iOS users can download the OpenVPN configuration.