If you’ve decided to deploy a VPN, you have made a conscious choice to protect your assets. My suggested checklist is:
- Plan for a software VPN solution that can scale and be easily upgraded. End-of-life hardware issues often cause you to extend platforms which can have detrimental effects on operations and security.
- Plan for a software VPN solution with integrated management of all VPN components such as servers, clients, users, certificates, etc. Management is key to maintaining control and reducing time-consuming operations.
- Ensure all relevant client platforms are supported. This will be important for company-wide acceptance of the solution.
- Ensure the solution has a concept of rollout and client updates, as well as upgrades that do not require administrator intervention. Client and configuration updates should be configurable at any time and pushed out to the users automatically afterwards.
- Ensure the solution integrates with your user directories (LDAP/AD) and allows automated synchronization of identities between the user directory and VPN system. Every additional required manual configuration task increases the risk for incomplete user provisioning or de-provisioning.
- Pay particular attention to usability and user-friendly features and functions. These will effectively reduce support calls and enhance end-user satisfaction.
Email your VPN-related questions to email@example.com.
Dig Deeper on WAN optimization and performance
Related Q&A from Rainer Enders
Administrators don't have to worry about interoperability; integrated mobile application and device management is the best approach. Continue Reading
Ensuring that the client software itself is up to date is just one of many reasons why it's critical to oversee VPN clients. Continue Reading
To ensure mobile device security, VPN expert Rainer Enders explains that it is crucial to monitor changed states and block software modifications. Continue Reading