We use cookies on our website to ensure we provide you with the best experience on our website. By using our website, you agree to the use of cookies for analytics and personalized content.This website uses cookies. More Information
It seems like your browser didn't download the required fonts. Please revise your security settings and try again.
Barracuda CloudGen Firewall

How to Configure VPN Templates in the SSL VPN

  • Last updated on

By adding group policy-based VPN templates to your firewall's SSL VPN resources, you can let end users self-provision the VPN clients on their Windows, macOS, or iOS devices. Users then only need to log into their desktop or mobile portal and click the provisioning link. By default, the VPN template uses session and user attributes for single sign-on. The downloaded file automatically configures the Barracuda VPN client or iOS VPN client, depending on the operating system. Currently, VPN files containing personal license files (*.lic) cannot be uploaded.

Before You Begin

Configure the VPN Template

Configure the client-to-site VPN access policy to allow CudaLaunch.

  1. Go to VPN > Client-To-Site VPN.
  2. In the VPN Access Policies section, edit an access policy, or click Add Access Policy and create a policy. Configure the VPN clients and network information to be passed to clients. For more information, see Client-to-Site VPN.
  3. In the Add / Edit VPN Access Policy window, set Use for CudaLaunch to Yes.
  4. (optional) Click Browse to upload a PNG file for the web portal. It must be less than 30 kB and no larger than 80x80 pixels.
  5. In the CudaLaunch Server field, enter the IP address of the server providing CudaLaunch.
  6. In the Allowed Groups field, enter the user groups that the policy setting applies to. Click + after each entry. You can use question marks (?) and asterisks (*) as wildcard characters.
    ssl_tmp_01.png
  7. Click Save.

The VPN template can now be used to self-provision your user's Windows, macOS, and iOS devices via the web portal as well as full device VPN in the CudaLaunch mobile app.

VPN Self-Provisioning

To configure the VPN clients on their desktop or iOS device, users can access the VPN templates through either the SSL VPN web portals or CudaLaunch. Clicking on the VPN template resource adds the VPN group policy to the VPN client installed on the device. For CudaLaunch on the mobile devices, the VPN connection is fully managed by the app, including updating the VPN profile if the VPN file attached to the VPN template in the SSL VPN is changed. For Windows and macOS devices, the VPN connection for the Barracuda VPN Client can be downloaded directly from CudaLaunch or the web portal, but VPN configuration changes are not synced.

For more information, see:

Last updated on