Adito VPN

Adito VPN based upon ssl-explorer adito has had many names. First it was ssl-explorer owned and operated by 3SP Ltd until Barracuda Networks acquired them. Adito vpn is no longer being developed which is a shame. Adito was then acquired by OpenVPN which they named it to OpenVPN ALS. OpenVPN ALS is a direct decedent of Adito which Adito was  a fork of ssl-explorer.

Here is the definitions of SSL-Explorer which is basically the same thing as adito. This is from a Wikiepedia article which can be found here.

SSL-Explorer: Community Edition was an open source SSL VPN product developed by 3SP Ltd, a company acquired by Barracuda Networks. The solution is licensed under the GNU General Public License (GPL) and is aimed primarily at smaller businesses to fulfill a requirement for remote accessto internal network resources.

It is designed to be installed upon a standalone server and allows a user to connect remotely to internal corporate resources such as intranet websites, network file shares, ‘fat client’ applications and other data via a regular web browser. From the perspective of the end user the main advantage is that they have access to the applications that they would use everyday at work through a simple web browser without needing to install dedicated VPN client software.

Well enough of that down to the features of Adito.

  • Adito is web based (Though for some of the more complex features like the firefox browser or remote desktop you will need to have java installed.)
  • No limit on the number of simultaneous users
  • Works through http proxies
  • Built in User Database for authentication
  • Active directory integration
  • Access to internal sites using web forwarding
  • Connect using any SSL-enabled browser
  •  Remote desktop support with auto authentication

The user interface for the standard user is very clean and simple. Most things can be launched with a click of a button. Though others require the users computer to have java installed, there is no configuration needed for the user side.

The Admin side of adito can be confusing sometimes but once you figure it out there is a lot that adito can offer. The whole system runs on SSL and can be setup using a self-signed certificate or one can be purchased from a SSL authority like Thawte SSL or a re-seller like domain.com. Once you set this up you have many options. The settings are split into groups. Configuration, Access Control, Resources, System. Configuration has system settings, ssl certificates and extension manager. The access control is used for accounts, groups, policies, Authentication schemes, ip restrictions. Resources is where you set what things inside the network are available to the users. Like networks drives, remote computers, Tunnels stuff like that. The last group is System this is where you would shutdown that Adito service and send messages to users either through the adito agent or by email.

There is so many things that adito has to offer. If I would list them all this post would be a couple of pages long. So instead of all that reading for you and for the typing for me. Hak5’s darren kitchen did a segment for adito. He includes that install of adito on a linux server or a windows machine using the lars werner installer. He also talks about added users and setting up some basic resources.