For the best security properties, using the product in Enterprise mode is recommended. You should also install the client software prior to first use. For more information, see Accessing SSL VPN in Enterprise Mode
in the Novell Access Manager 3.0 SP4 VPN User Guide.
Before you enable the connection, examine the certificate of the server that is asking for the authentication credentials. In order to prevent the phishing attacks, avoid connecting to a non-trusted server during the authentication phase.
Pre-installation of kernel drivers is recommended because of security concerns about installing non-trusted software.
In Enterprise mode, the tunnel is established between the client and server machines. This solution is not appropriate for multi-user machines where the users are logged in at the same time, because any software acting on behalf of an authenticated user on the client can make use of the encrypted tunnel.
Using AES 256 mode of encryption is recommended.