In Kiosk mode, only a limited set of applications are enabled for SSL VPN. A non-admin user, a non-root user, or a standard user in Windows Vista can connect to SSL VPN in Kiosk mode if he or she does not have administrator access. In Kiosk mode, applications that were opened before the SSL VPN connection was established are not SSL-enabled.
Kiosk mode supports TCP and UDP applications only. This mode is better suited for machines that are not managed by an organization, such as home computers and computers in Web browsing kiosks.
You can configure a user to connect in Kiosk mode only. When you have done so, a user is connected to SSL VPN in Kiosk mode after the user provides credentials in the Novell Access Manager login page. For more information, see Section 15.1, Configuring Users to Connect Only in Enterprise Mode or Kiosk Mode.
If you have left the mode selection to the client and when a user logs in to the SSL VPN client as a non-admin or non-root user, the following dialog box is displayed:
Figure 3-2 SSL VPN dialog box
The user can do one of the following to load the Kiosk mode:
Click
to connect to SSL VPN in Kiosk mode for that particular session. The user is prompted again to provide the administrator or the root username and password during the next login.Click
to connect to SSL VPN in Kiosk mode in the current session, as well as in subsequent sessions.A user who has clicked Switching from Kiosk Mode to Enterprise Mode
in Novell Access Manager 3.1 SSL VPN User Guide.
NOTE: When a non-admin user uses Internet Explorer to establish an SSL VPN connection, the ActiveX download fails. This happens because ActiveX requires admin rights to download.This issue might also occur if you have upgraded from an older version. If a user wants to access SSL VPN with Internet Explorer, use the following URL:
https:<DNS-Name>/sslvpn/login?forcejre=true
For more information, see Section 15.3, Configuring SSL VPN to Download the Java Applet on Internet Explorer.