It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda Network Access Client

This Firmware Version Is End-Of-Support

Documentation for this product is no longer updated. Please see End-of-Support for CloudGen Firewall Firmware for further information on our EoS policy.

Customer Install Files

  • Last updated on

The customer.inf file is a component used for unattended custom installation of the Barracuda Network Access Client / VPN Client for Windows. Remove nonessential parameters from the customer.inf file before applying it for custom setup. The customer.inf setup is only available for the Barracuda VPN Client. It requires administrator rights on the target system.

Do not rename the customer.inf file.

The customer.inf File

The customer.inf file directs the copying of required files and the insertion of registry entries. It is divided into three sections of interest (Customer Areas):

The syntax examples below are partly arranged in abstracts only. If needed as template, see the full exemplary customer.inf in the Template Code section at the bottom of this page.

Section 1: Customer Area / [PhionCustomerCopyFiles]

Example for section [PhionCustomerCopyFiles]:

[PhionCustomerCopyFiles]

; destination-file-name[,source-file-name][,temporary-file-name][,flag]

customer.inf,,,2 ; important, do not remove
customer.lic,,,2 ; if importing a license file
active.i_fwrule,,,2 ; if importing a firewall rule set

Optionally, the following file directives may be detailed:

File directives applicable in the Customer Area / [CustomerCopyFiles]

DirectiveComment

destination-file-name

Name of the destination file. If no source-file-name is given, this specification is also the name of the source file.

source-file-name

Name of the source file. If the source and destination file names for the file copy operation are the same, source-file-name can be omitted.

temporary-file-name

Name of a temporary file to be created in the copy operation if a file of the same name on the destination is open or currently in use. Only used on Windows 9x/Me platforms. The NT-based operating system automatically generates temporary file names when necessary and renames the copied source files the next time the operating system is started.

Flags

These optional flags, expressed in hexadecimal notation or as a decimal value in a section entry, can be used to control how (or whether) a particular source file is copied to the destination. One or more (ORed) values for the following system-defined flags can be specified, but some of these are mutually exclusive:

0x00000400
(COPYFLG_REPLACEONLY)

Copy the source file to the destination directory only if the file is already present in the destination directory.

0x00000800
(COPYFLG_NODECOMP)

Copy the source file to the destination directory without decompressing the source file if it is compressed.

0x00000008
(COPYFLG_FORCE_FILE_IN_USE)

Force file-in-use behavior. Do not copy over an existing file of the same name if it is currently open. Instead, copy the given source file with a temporary name so that it can be renamed and used when the next reboot occurs.

0x00000010
(COPYFLG_NO_OVERWRITE)

Do not replace an existing file in the destination directory with a source file of the same name. This flag cannot be combined with any other flags.

0x00001000
(COPYFLG_REPLACE_BOOT_FILE)

This file is required by the system loader. The system will prompt the user to reboot the system.

0x00002000
(COPYFLG_NOPRUNE)

Do not delete this operation to effectuate optimization. For example, Setup might determine that the file copy operation is not necessary because the file already exists. However, the writer of the INF knows that the operation is required and directs Setup to override its optimization and perform the file operation.
This flag can be used to ensure that files are copied if they are also specified in an INF DelFiles directive or an INF RenFiles directive.

0x00000020
(COPYFLG_NO_VERSION_DIALOG)

Do not overwrite a file in the destination directory with the source file if the existing file is newer than the source file. This flag is irrelevant to digitally signed INF files. If a driver package is digitally signed, Setup installs the package as a whole and does not selectively omit files in the package based on other versions already present on the machine.

0x00000004
(COPYFLG_NOVERSIONCHECK)

Ignore file versions and overwrite existing files in the destination directory. This flag and the next two are mutually exclusive. This flag is irrelevant to digitally signed INF files.

0x00000040
(COPYFLG_OVERWRITE_OLDER_ONLY)

Copy the source file to the destination directory only if the file on the destination will be superseded by a newer version. This flag is irrelevant to digitally signed INF files.

0x00000001
(COPYFLG_WARN_IF_SKIP)

Send a warning if the user selects to not copy a file. This flag and the next are mutually exclusive, and both are irrelevant to INF files that are digitally signed.

0x00000002
(COPYFLG_NOSKIP)

Do not allow the user to skip copying a file. This flag is implied if the driver package is signed.

 

Do not change the name of the firewall ruleset entry (active.i_fwrule). If you are not installing the Personal Firewall with a predefined ruleset that meets company policy, uncomment or delete this line.

Section 2: Customer Area / [CustomerReg]

This section controls the configuration of profiles set up during installation. Profile settings are saved to HKEY_USERS\.DEFAULT\Software\Phion\phionvpn\Profile. The structure is the following:

HKU,.DEFAULT\Software\Phion\phionvpn\Profile\1,dhcp,0x00010001,1
------------------------------------- Registry Path
-------- Profile Path
- Profile ID

For automated VPN profile creation, the following syntax is applicable in the customer.inf file:

  • reg-root, [subkey], [value-entry-name], [flags], [value]

This section is used for creating profiles and defining default values. The following file directives may be detailed:

Directives Applicable in the Customer Area / [CustomerReg]

DirectiveComment

reg-root

Identifies the root of the registry tree for other values supplied in this entry. The value can be one of the following:

HKCR

Abbreviation for HKEY_CLASSES_ROOT.

HKCU

Abbreviation for HKEY_CURRENT_USER.

HKLM

Abbreviation for HKEY_LOCAL_MACHINE.

HKU

Abbreviation for HKEY_USERS.

subkey

Optional; formed either as a %strkey% token defined in a Strings section of the INF or as a registry path under the given reg-root (key1\key2\key3 …), specifies one of the following:

  • A new subkey to be added to the registry at the end of the given registry path.
  • An existing subkey in which the additional values specified in this entry will be written (possibly replacing the value of an existing named value entry of the given subkey).
  • Both a new subkey to be added to the registry together with its initial value entry.

value-entry-name

Optional; either names an existing value entry in the given (existing) subkey or creates the name of a new value entry to be added in the specified subkey, whether it already exists or is a new key to be added to the registry. This value can be expressed either as "quoted string" or as a %strkey% token that is defined in the INFs Strings section. (If this is omitted for a string-type value, the value entry name is the default unnamed value entry for this key.) The operating system supports some system-defined, special value-entry-name keywords. See the end of this comments section for more information.

value

Optionally specifies a new value for the specified value-entry-name to be added to the given registry key.

Such a value can be a replacement value for an existing named value entry in an existing key, a value to be appended (flag value 0x00010008) to an existing named REG_MULTI_SZ-type value entry in an existing key, a new value entry to be written into an existing key, or the initial value entry for a new subkey to be added to the registry.

The expression of such a value depends on the registry type specified for the flag as follows:

  • A registry string-type value can be expressed either as a "quoted string" or as a %strkey% token defined in a Strings section of the INF file. Such an INF-specified value must not include a NULL terminator at the end of each string.
  • A registry numerical-type value can be expressed as a hexadecimal (using 0x notation) or decimal number.

Flags

Optional hexadecimal value, expressed as an ORed bitmask of system-defined low word and high word flag values, defines the data type for a value entry and/or controls the add-registry operation. 
Bitmask values for each of these flags are as follows:

0x00000001
(FLG_ADDREG_BINVALUETYPE)

The given value is raw data. This value is identical to the FLG_ADDREG_TYPE_BINARY.

0x00000002
(FLG_ADDREG_NOCLOBBER)

Prevent a given value from replacing the value of an existing value entry.

0x00000004
(FLG_ADDREG_DELVAL)

Delete the given subkey from the registry, or delete the specified value-entry-name from the specified registry subkey.

0x00000008
(FLG_ADDREG_APPEND)

Append a given value to that of an existing named value entry. This flag is valid only if FLG_ADDREG_TYPE_MULTI_SZ is also set. The specified string value is not appended if it already exists.

0x00000010
(FLG_ADDREG_KEYONLY)

Create the given subkey, but ignore any supplied value-entry-name and/or value.

0x00000020
(FLG_ADDREG_OVERWRITEONLY)

Reset to the supplied value only if the specified value-entry-name already exists in the given subkey.

0x00001000
(FLG_ADDREG_64BITKEY)

Make the specified change in the 64-bit registry. If not specified, the change is made to the native registry.

0x00002000

(FLG_ADDREG_KEYONLY_COMMON)

Same as FLG_ADDREG_KEYONLY but also works in a del-registry-section (see INF DelReg Directive).

0x00004000
(FLG_ADDREG_32BITKEY)

Make the specified change in the 32-bit registry. If not specified, the change is made to the native registry.

0x00000000
(FLG_ADDREG_TYPE_SZ)

Given value entry and/or value is of type REG_SZ. Note that this is the default type for a specified value entry, so the flag's value can be omitted from any reg-root line in an add-registry section that operates on a value entry of this type.

0x00010000

(FLG_ADDREG_TYPE_MULTI_SZ)

Given value entry and/or value is of type REG_MULTI_SZ. This specification does not require any NULL terminator for a given string value.

0x00020000
(FLG_ADDREG_TYPE_EXPAND_SZ)

Given value entry and/or value is of type REG_EXPAND_SZ.

0x00010001
(FLG_ADDREG_TYPE_DWORD)

Given value entry and/or value is of type REG_DWORD.

0x00020001
(FLG_ADDREG_TYPE_NONE)

Given value entry and/or value is of type REG_NONE.
Section 3: Customer Area / [SourceDisksFiles]

Example for section [SoruceDisksFiles]:

[SourceDisksFiles]
; Files for disk Customer Files #1
; filename = diskid[,[ subdir][, size]]

customer.inf,,,1
customer.lic,,,1 ; if a license file is imported
active.i_fwrule,,,1 ; if a firewall rule set is imported

A SourceDisksFiles section names the source files used during installation, identifies the installation disks that contain these files, and provides the path to the subdirectories, if any, on the distribution disks containing individual files. The following directives are applicable: filename = diskid[,[ subdir][, size]]

File Directives Applicable in the Customer Area / [SourceDisksFiles]

DirectiveComment
filename
Name of the file on the source disk.
diskid

Integer identifying the source disk that contains the file.
This value and the initial path to the subdir(ectory), if any, containing the named file must be defined in a SourceDisksNames section of the same INF.

subdir

Subdirectory (relative to the SourceDisksNames path specification, if any) on the source disk where the named file resides.
If this value is omitted from an entry, the named source file is assumed to be in the path directory that was specified in the SourceDisksNames section for the given disk or, if no path directory was specified, in the installation root.

size
Optional; uncompressed size, in bytes, of the given file.


Do not change the name of the firewall ruleset entry (active.i_fwrule). Remove this line if you do not intend to install the Personal Firewall with a predefined ruleset that meets company policy.

Template Code: Customer Install Files (customer.inf)

In the box below, you can find template code for a customer.inf file, ready to copy and paste.

; -------------------------------------------------------------------------------------------- ; customer.INF ; ; Customer Install Files ; ; Copyright 2008-2015 Barracuda Networks, Inc. ; ; For detailed information please consider the Barracuda TechLibrary ; -------------------------------------------------------------------------------------------- [version] signature = "$Windows NT$" provider = %ph% [Manufacturer] %Phion% = Phion [DefaultInstall] CopyFiles=PhionCustomerCopyFiles AddReg = PhionCustomerReg [DefaultUninstall] DelFiles=PhionCustomerCopyFiles DelReg = PhionCustomerReg ; ----------------------------------------------------------------------------- ; 1, Customer Area ; ----------------------------------------------------------------------------- [PhionCustomerCopyFiles] ; destination-file-name[,source-file-name][,temporary-file-name][,flag] customer.inf,,,2 ; important, do not remove customer.lic,,,2 ; if importing a phion license file active.i_fwrule,,,2 ; if importing a firewall rule set ; ----------------------------------------------------------------------------- ; 2, Customer Area ; REG_SZ = 0x00000000 ; REG_DWORD = 0x00010001 ; ; Description: ; ; Certificate: AuthType (0x00010001) ; 0 -> phion authentication ; 1 -> X509 authentication ; 2 -> User / Password ; ; File: license (0x00000000) ; Subject: license (0x00000000) ; ; Microsoft Certificate Store Lookup: CertSearchOrder (0x00010001) ; 0 -> Lookup with Subject ; 1 -> Lookup with Issuer ; ; Use Serial Number: certserialnumber (0x00000000) ; Private Encrypt: PrivateEncrypt (0x00010001) ; Probe Encryption: ProbeEncryption (0x00010001) ; Prompt for user and password: AuthUser (0x00010001) ; ; Remote Server: server (0x00000000) ; ; Proxy Type Configuration: proxyType (0x00010001) ; 0 -> No Proxy ; 1 -> HTTP Proxy ; 2 -> Socks4 ; 3 -> Socks5 ; Proxy [:Port]: proxy (0x00000000) ; Proxy user: proxyuser (0x00000000) ; Domain: proxydomain (0x00000000) ; Simulate SSL: simulateSSL (0x00010001) ; ; Authentication algorithm: hash (0x00010001) ; 1 -> MD5 ; 2 -> SHA1 ; 3 -> No Hash ; 4 -> SHA256 ; ; Encryption Algorithm: encryption (0x00010001) ; 1 -> None ; 2 -> 3DES ; 4 -> AES ; 8 -> Cast ; 16 -> Blowfish ; 32 -> DES ; 64 -> AES256 ; ; Tunnel Mode: mode (0x00010001) ; 1 -> Reliability (TCP) ; 2 -> Response (UDP) ; 3 -> Optimized (Hybrid) ; ; Virtual Adapter Configuration: dhcp (0x00010001) ; 0 -> Assign IP address manually ; 1 -> Use internal DHCP assignment (default) ; 2 -> Direct assignment ; ; Compression: streamCompression (0x00010001) ; Use Policy Server: usePolSrv, 0x00010001 ; Disconnect when user logs off: terminateIfUserLogout (0x00010001) ; One Time Password: oneTimePassword (0x00010001) ; Allow ENA Connection: allowENA (0x00010001) ; Allow Sending Offline Ruleset: allowFWRule (0x00010001) ; Save new Certificate Unattended: unattended (0x00010001) ; Silent Mode (No Keep Alive): silent (0x00010001) ; Keep Alive (seconds): timeoutAlive (0x00010001) ; Start Script: startScript (0x00000000) ; Stop Script: stopScript (0x00000000) ; Enable MS Logon: enableMSLogon (0x00010001) ; ; Certificate Store Flag: StoreFlags (0x00010001) ; ffffffff -> <default> ; 10000 -> Current User ; 70000 -> Current User Group Policy ; 20000 -> Local Machine ; 90000 -> Local Machine Enterprise ; 80000 -> Local Machine Group Policy ; 50000 -> Phion VPN Service ; ; Certificate Store: store (0x00000000) ; MY -> MY ; Root -> Root ; Trust -> Trust ; CA -> CA ; ; Terminate Countdown (sec.): TerminateCountdown (0x00010001) ; Show Popup: ShowPopup (0x00010001) ; Close after Connect: CloseOnConnect (0x00010001) ; ----------------------------------------------------------------------------- [PhionCustomerReg] ; reg-root, [subkey], [value-entry-name], [flags], [value] HKU, .DEFAULT\Software\Phion\phionvpn, CustomerINF, 0x00000000, "%65600%\customer.inf" ; important, do not remove ; Profile 1 Example with phion.lic (Default selected) ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\1, Default, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\1, dhcp, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\1, AuthType, 0x00010001, 0 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\1, Description, 0x00000000, "phionLIC (Default)" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\1, license, 0x00000000, "%65600%\customer.lic" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\1, server, 0x00000000, "192.168.0.1" ; Profile 2 Example with extern linked X509 PKCS#12 File ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, Default, 0x00010001, 0 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, dhcp, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, AuthType, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, AuthUser, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, description, 0x00000000, "Extern PKCS#12" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, license, 0x00000000, "%65600%\X509-Certificate.p12" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, server, 0x00000000, "192.168.0.1" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, mode, 0x00010001, 2 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, hash, 0x00010001, 2 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, PrivateEncrypt, 0x00010001, 0 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\2, store, 0x00000000, "" ; Profile 3 Example with Microsoft Certificate Store Linked x509 Certificate ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, Default, 0x00010001, 0 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, dhcp, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, AuthType, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, AuthUser, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, description, 0x00000000, "MY-Store Linked x509" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, license, 0x00000000, "" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, server, 0x00000000, "192.168.0.1" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, mode, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, hash, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, PrivateEncrypt, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\3, store, 0x00000000, "MY" ; Profile 4 Example with phion.lic and Proxy Connection ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, Default, 0x00010001, 0 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, dhcp, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, Description, 0x00000000, "PhionLIC with Proxy" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, license, 0x00000000, "%65600%\customer.lic" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, server, 0x00000000, "192.168.0.1" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, Default, 0x00010001, 0 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, proxy, 0x00000000, "http://www.proxy.ip:3128" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, proxyType, 0x00010001, 1 ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, proxyuser, 0x00000000, "testUser" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, proxydomain, 0x00000000, "PHION" ; HKU, .DEFAULT\Software\Phion\phionvpn\Profile\4, mode, 0x00000000, 1 ; ----------------------------------------------------------------------------- ; install credential provider ; ; If you want to set the 'enableMSLogon' property in your profile (see above) you also have to install the Barracuda Credential Provider. ; Please note that values depend on your OS version (e.g. Windows 8 and newer) AND your OS architecture. (i.e. 32-bit / 64-bit) ; 32-bit operating systems ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}, , 0x00000000, "CredentialProvider" ; ; Windows Vista/Windows 7 OR ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}\InprocServer32, , 0x00000000, "CredentialProvider.dll" ; Windows 8 and newer (you must only include one line) ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}\InprocServer32, , 0x00000000, "CredentialProviderWin8.dll" ; ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}\InprocServer32, ThreadingModel, 0x00000000, "Apartment" ; HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}, , 0x00000000, "CredentialProvider" ; HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}, , 0x00000000, "phionCredentialProviderFilter" ; HKLM, SOFTWARE\Phion\phionvpn, "CredentialProviderInstalled, 0x00010001, 1 ; ; 64-bit operating systems ; ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}, , 0x00001000, "CredentialProvider" ; ; Windows Vista/Windows 7 OR ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}\InprocServer32, , 0x00001000, "CredentialProvider.dll" ; Windows 8 and newer (you must only include one line) ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}\InprocServer32, , 0x00001000, "CredentialProviderWin8.dll" ; ; HKCR, CLSID\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}\InprocServer32, ThreadingModel, 0x00001000, "Apartment" ; HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}, , 0x00001000, "CredentialProvider" ; HKLM, SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Provider Filters\{6CBB6E49-617A-4d74-AD03-B591C78DE5A3}, , 0x00001000, "phionCredentialProviderFilter" ; HKLM, SOFTWARE\Phion\phionvpn, "CredentialProviderInstalled, 0x00010001, 1 ; ----------------------------------------------------------------------------- ; 3, Customer Area ; ----------------------------------------------------------------------------- [SourceDisksFiles] ; Files for disk phion AG Customer Files #1; filename = diskid[,[ subdir][, size]]customer.inf,,,1customer.lic,,,1 ; if a phionlicense file is importedactive.i_fwrule,,, ; if a firewall rule set is imported ;---------------------------------------------------------------------------- ; Do not change any attribute beyond this line! ;[DestinationDirs]PhionCustomerCopyFiles = 65600[SourceDisksNames]1 = %DiskId1%,,,"" ;---------------------------------------------------------------------------- ; Localizable Strings ;[Strings] ph = "Phion" DisplayClassName = "Phion Customer Files" Phion = "Phion AG" *Phiond.DeviceDesc = "Phion Customer Files" Phion.DeviceDesc = "Phion Customer Files" *Phion.DeviceDesc = "Phion Customer Files" phionvpn.Service.DispName = "Phion Customer Files" DiskId1 = "Phion Customer Files Disk #1"