3.2 Kiosk Mode

In Kiosk mode, only a limited set of applications are enabled for SSL VPN. A non-admin user, a non-root user, or a standard user in Windows Vista can connect to SSL VPN in Kiosk mode if he or she does not have administrator access. In Kiosk mode, applications that were opened before the SSL VPN connection was established are not SSL-enabled.

Kiosk mode supports TCP and UDP applications only. This mode is better suited for machines that are not managed by an organization, such as home computers and computers in Web browsing kiosks.

You can configure a user to connect in Kiosk mode only. When you have done so, a user is connected to SSL VPN in Kiosk mode after the user provides credentials in the Novell Access Manager login page. For more information, see Section 15.1, Configuring Users to Connect Only in Enterprise Mode or Kiosk Mode.

If you have left the mode selection to the client and when a user logs in to the SSL VPN client as a non-admin or non-root user, the following dialog box is displayed:

Figure 3-2 SSL VPN dialog box

The user can do one of the following to load the Kiosk mode:

A user who has clicked Ignore Forever can still connect to SSL VPN in Enterprise mode in the next session. For more information, see Switching from Kiosk Mode to Enterprise Mode in Novell Access Manager 3.1 SSL VPN User Guide.

NOTE: When a non-admin user uses Internet Explorer to establish an SSL VPN connection, the ActiveX download fails. This happens because ActiveX requires admin rights to download.This issue might also occur if you have upgraded from an older version. If a user wants to access SSL VPN with Internet Explorer, use the following URL:

https:<DNS-Name>/sslvpn/login?forcejre=true

For more information, see Section 15.3, Configuring SSL VPN to Download the Java Applet on Internet Explorer.