Clientless VPN Access

I am providing remote access to a handful of users to our network.    Mostly for RDP but some others as well.    I have used VPN clients which work but provide some challenges when users want access from other computers where the VPN client is not readily available or we do not want to provide permanent access.     We have also used a VPN appliance which worked well up until browsers started to stop supporting Java.    Now these are a real headache.     It seems the HTML5 RDP clients have there limits although they do work.

what I am bascially looking for is web based VPN client that does not require installing on each computer.    Does such as thing exist?

Thanks All
LVL 2
Zoldy2000Asked:
Who is Participating?

[Product update] Infrastructure Analysis Tool is now available with Business Accounts.Learn More

x
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

JohnBusiness Consultant (Owner)Commented:
No. VPN is complicated. You need:

1. Site to Site for no client (not practical here).
2. A VPN client (you don't want this)
3. Microsoft PPTP VPN. Not as secure and must be set up.

So no.
0
Edward PamiasTeam Lead RRS DeskCommented:
What do you mean the browsers stopped supporting Java?
0
Zoldy2000Author Commented:
all major browsers stopped support Java in there latest versions
0
Discover the Answer to Productive IT

Discover app within WatchGuard's Wi-Fi Cloud helps you optimize W-Fi user experience with the most complete set of visibility, troubleshooting, and network health features. Quickly pinpointing network problems will lead to more happy users and most importantly, productive IT.

Edward PamiasTeam Lead RRS DeskCommented:
mine still work. I did have issues getting into one of my customers sites but all I had to do was open control Panel go to Java control panel security tab and add the site as an exception.
0
Shaun VermaakTechnical Specialist IVCommented:
If you have a Windows Server such as 2012 R2 you can set up an SSTP VPN that requires no client and can work at most locations because it only requires port 443 outbound to be out.

Basically, you only need certificate on server and the workstations only enter username and password
0
Zoldy2000Author Commented:
We already have a 2012 R2 terminal server farm with a cert.    So how does the SSTP VPN work and where do i find information.
0
JohnBusiness Consultant (Owner)Commented:
PPTP VPN is built into Windows Server. Set up profiles for the users you need.

Then any normal computer can set up PPTP. The main issue for you will be to have users delete their profiles when done.

We do this for clients and I really prefer lightweight company owned  laptops for this.
0
Shaun VermaakTechnical Specialist IVCommented:
SSTP is agentless VPN connecting via 443 (open virtually on all networks) unlike port 1723 for PPTP
0
JohnBusiness Consultant (Owner)Commented:
Thank you. I missed SS and thought PP. Sorry about that.
0
Zoldy2000Author Commented:
I don't think this is what i was looking for ether its still a client its just built into windows.
0
JohnBusiness Consultant (Owner)Commented:
PPTP is built into Windows
0
Shaun VermaakTechnical Specialist IVCommented:
You probably need a network device that can do the VPN for clients?
0
JohnBusiness Consultant (Owner)Commented:
Generally yes, but PPTP works over basic internet. It must be set up and deleted each time.
0
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
What's wrong with "built-in in Windows"?
All VPNs require a piece of software. Whether you call it "install" or not, it is installed. Nothing can work without.
0
JohnBusiness Consultant (Owner)Commented:
Grin :)   I do NOT use PPTP, but then we provide laptops with good VPN clients (that of course must be installed).
0
Zoldy2000Author Commented:
Not all VPN's require a client.      There are plenty of VPN appliances that have web based applets that run RDP http FTP applets.    The problem is there JAVA based.      The HTML 5 ones I have seen so far are not very good.    there not full featured.
0
Shaun VermaakTechnical Specialist IVCommented:
As per ID ID: 42078766, one of them is a Cisco SSL VPN solution
http://www.cisco.com/c/en/us/solutions/enterprise-networks/ssl-vpn-solution/index.html
0
Qlemo"Batchelor", Developer and EE Topic AdvisorCommented:
Certainly​ you do not want to use Cisco SSL. It installs a client, and is restrictive plus invasive.
0
Rob WilliamsCommented:
Where you have a terminal server farm in place, you can use Terminal Server Gateway to access terminal servers and PCs with no need for a VPN.  RDP these days is quite secure, and a VPN adds additional overhead reducing performance and sometimes VPNs can be restrictive for mobile clients.  Just a thought.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Zoldy2000Author Commented:
This is something I have considered as well.     However I found conflicting articles on just how secure it was.     Also I found the setup confusing.    But perhaps I should review again.
0
JohnBusiness Consultant (Owner)Commented:
I just took a client Windows 10 Pro machine (that runs Symantec Endpoint Protection), turn on Windows Defender (but not Real Time) and the update installed.

That is the first time / first machine I use that has updated since last Friday.

I will try the Insider Machine tonight (no SEP on that Insider machine)
0
Zoldy2000Author Commented:
RDGateway is really the only way to connect users without clients or appliances it appears.    however some of the other suggestions are valid and marked as assisted.
0
JohnBusiness Consultant (Owner)Commented:
Thanks for the update
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Remote Access

From novice to tech pro — start learning today.