Access Server's Features Overview

Flexible Deployment Options: Access Server installs on a Linux OS with flexible installation options to meet the needs of your network, including on virtual machines (e.g., VMWare, Hyper-V, Docker) or cloud platforms (e.g., AWS, Azure, Google Cloud).

Multi-Platform Client Support: Users can connect with clients available for Microsoft Windows, macOS, iOS, Android, and Linux, ensuring broad compatibility across your organization's devices.

Robust VPN Protocol: VPN tunnels are secured with the OpenVPN protocol using TLS authentication, credentials, certificates, and MAC address lock (optional).

Flexible User Authentication: Access Server includes a built-in system with a web-based management interface, and it can also integrate with external systems such as PAM, LDAP, RADIUS, or SAML for centralized user management.

Multi-Factor Authentication (MFA): Access Server includes a built-in TOTP MFA system and supports third-party MFA solutions like Duo Security and LastPass using post-authentication plugins.

Built-in Certificate Management: Access Server handles all the complexities of VPN certificate management and provisioning automatically. For organizations that need more control, it also supports external PKI for integration with an existing PKI.

Custom Authentication: For highly customized security needs, Access Server supports advanced authentication through custom programming with Python, allowing you to develop unique authentication workflows.

Intuitive Admin Web UI: Access Server features a new, modern Admin Web UI built with React that offers a smooth and fast experience without the need for full-page reloads, making administrative tasks more efficient.

Comprehensive Administrative Tools: Administrators can manage MFA settings for all users, modify advanced configuration settings, and generate a configuration report for support analysis directly from the Admin Web UI.

Enhanced Visibility: The Admin Web UI provides clear insight, displaying your subscription ID for quick reference and the number of shared connections being used by other Access Server nodes.

Granular Access Control: Detailed access control rules specify which users or groups can access specific IP addresses and subnets, and can also allow or disallow direct VPN client connections.

Flexible Traffic Redirection: Full-tunnel redirection routes all internet traffic from the VPN client through the VPN tunnel, while split-tunnel redirection routes only specified traffic (e.g., traffic for your corporate network) through the VPN tunnel and allows other traffic to directly reach the internet.

Extensive Web API: For developers and IT teams, an extended Web API makes automating workflows and integrations easy, allowing programmatic control of Access Server and its settings.

Built-in API Documentation: To simplify the integration process, the Admin Web UI includes a built-in tester and comprehensive Web API documentation, making it easier than ever to build and maintain custom integrations.

Professional Support: The OpenVPN, Inc. team provides professional support through an online support ticket system, staffed by a global team of experts to assist with any questions or issues.