Login to SSL VPN Client before logon to domain account

Jerry_1933
Jerry_1933 used Ask the Experts™
on
Our company is in the process of overhauling our entire network. We purchased a Watchguard UTM 530 and are looking for a way to force the SSL VPN client to load before the user logs into their domain account. We are running MS Server 2012 and Windows 8.1 / 7. Watchguard sells a IPSec Client but we would rather use the SSL VPN and save the money. I know Cisco supports this function with no issues. But Watchguard is a little lacking.
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Top Expert 2016
Commented:
Create a scheduled task named "Auto VPN" or something similar
   Tick the Run whether  user is logged  on or not  
   Tick the Run with highest privileges
   Select Configure for Windows 7, Windows Server 2008 R2 in the Configure For drop down box  
   Create a the trigger for the task and set the Begin the task drop down to At startup
   Create an action for the task and set the action to Start a program
      Set the Program/script to c:\windows\system32\rasdial.exe
      Put the name of the connection to be made in the Add Arguments box*
         *If the name contains spaces you will need to enclose the name in quotation marks
         *You may need to additional rasdial parameters to the Add Arguments box dependent on the connection properties

 Clear all task Conditions

http://preview.tinyurl.com/69xbe7z
Keith AlabasterEnterprise Architect
Top Expert 2008

Commented:
David is on the money. At some point in the future though - as you are running 2012 and Windows clients - you may want to consider using Windows' own Directaccess ....your issue is partly what it was designed to address.

Author

Commented:
Thank you for the help but it did not work.
Become a Certified Penetration Testing Engineer

This CPTE Certified Penetration Testing Engineer course covers everything you need to know about becoming a Certified Penetration Testing Engineer. Career Path: Professional roles include Ethical Hackers, Security Consultants, System Administrators, and Chief Security Officers.

Top Expert 2016

Commented:
can you create a vpn connection to the watchguard or do you need their client (you probably don't need to)

Author

Commented:
I can connect but only after login. I have a few remote users that never come into the office. Due to this interactive login on the VPN is a must.
Top Expert 2016

Commented:
can you run the rasdial from the task scheduler  to check if it can login?

Author

Commented:
We are just going to return this unit and go back with Cisco or another vendor. At just about every turn we run into a obstacle caused by this unit.

Commented:
I was able to get this working by logging in as an existing user on the machine and connecting the SSL VPN. I then switched user (not logging out of the first), and was able to log in as a new user. The VPN will stay connected during this process.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial