Skip to main content

The Client Web UI

The following sections detail the screens included with the Client Web UI.

User Login

login-screen.png

Users can sign in when they first navigate to the Client Web UI. The interface displays a window with fields for entering a username and password. Optionally, if you've configured SAML as an authentication method, it provides a button for SAML authentication.

On this screen, the default display shows the Access Server brand, but you can customize the screen to display your business logo and information.

MFA (optional)

The following screens display for users configured to authenticate with MFA and usernames and passwords.

The enrollment screen displays when a user needs to set up MFA TOTP. They scan the QR code or enter the secret into an app that supports TOTP to generate their time-based one-time password.

enroll-in-mfa.png

The TOTP code screen displays when a user is already enrolled in MFA. They enter their time-based code to complete authentication and sign in.

mfa-security-question.png

Sign In With SAML

saml-login.png

Users configured with the SAML SSOclick Sign In With SAML, and the interface directs them to their SAML provider to sign in with their credentials. Once they successfully authenticate, it returns them to the Downloads page.

If a user is already signed in with their SAML provider, it skips the authentication step and takes them to the Downloads page.

Downloads

Downloads-page.png

After successfully authenticating, users arrive at the Downloads page. They can download OpenVPN Connect for their operating system, which displays.

In the example above, the user is on a Windows device. In the example below, the user is on an Android device.

android-downloads.jpg

Tip

If you don't see options or apps for your desired platform, they may be disabled in the Admin Web UI.

The window displays the recommended OpenVPN Connect app based on the user's device. It also shows OpenVPN Connect for all supported platforms in the For other platforms drop-down:

  • Windows

  • macOS

  • Linux

  • Android

  • iOS

Connection Profiles

connection-profiles-user.png

When a user clicks Connection Profiles, that page displays where they can see existing profiles and create new ones.

When a user creates a new profile, they can download the .ovpn file or choose to import it directly into OpenVPN Connect.

new-profile.png

Users can delete existing profiles from this screen.

Change Password

change-password-2-14.png

Note

This page only displays for local authentication users. Users who authenticate with PAM, LDAP, RADIUS, or SAML won't have this option, and the page doesn't display in their Client Web UI.

When a user clicks Change Password, a screen displays where they can verify their current password and set a new password.

Tip

The administrator can manage two options for passwords in the Client Web UI at the user level: whether users can change passwords in the UI and whether they must meet strict password validation rules to set a new password. These can also be set at the group level.

Go To Admin Portal

go-to-admin-portal.png

When a user has admin rights granted and signs in to the Client Web UI, the Go To Admin Portal option is available in the user account drop-down. Clicking it takes them to the Admin Web UI login.

Logout

logout-drop-down.png

To sign out, a user clicks on their user account drop-down and clicks Logout. They are returned to the User Login screen.

In this section: