Skip to main content

VPN Access

This guide provides detailed instructions for configuring and managing VPN access to your Private NeoCloud environment using FortiClient VPN.

1. Configuring VPN Connection

Setup Instructions

  1. Launch FortiClient VPN

    • Open FortiClient application on your system

  2. Create New VPN Connection

    • Click "Add a new connection"
    • Select the "IPsec VPN" tab

  3. Configure Connection Settings

    Fill in the following fields as shown in the configuration screen:

    • Connection Name: Enter a name for your connection (e.g., your organization name)
    • Description: (Optional) Add a description
    • Remote Gateway: Enter the gateway IP address provided in your onboarding email
    • Authentication Method: Select "Pre-shared key" from the dropdown
    • Pre-shared key field: Enter the key provided in your onboarding email
    • Authentication (XAuth): Select "Save login"
    • Username: Enter your VPN username from the onboarding email

  4. Save the Configuration

    • Click "Save" to store the VPN profile
note

All connection details (Remote Gateway, Pre-shared key, Username) will be provided in your onboarding email.

Connecting to VPN

  1. Open FortiClient VPN
  2. Select your Private NeoCloud VPN connection
  3. Enter your credentials (if not saved)
  4. Click "Connect"
  5. Wait for the connection to establish (status will show "Connected")
tip

To verify your VPN connection is active:

  • Windows/macOS: Check the FortiClient icon in your system tray/menu bar
  • Linux: Use ifconfig or ip a to verify the VPN interface (usually ppp0 or similar)

2. Adding VPN Users in FortiGate

This section is for administrators who need to add or manage VPN users in the FortiGate firewall.

Prerequisites

  • FortiGate administrator access
  • VPN user authentication method configured (local or LDAP/RADIUS)

Steps to Add VPN Users

  1. Access FortiGate Management Interface

    • Navigate to: https://[fortigate-management-ip]
    • Log in with administrator credentials

  2. Create New User

    • Go to User & AuthenticationUser Definition
    • Click "Create New""User"
    • Follow the wizard:

    Step 1: User Type

    • Select "Local User"

    Step 2: Login Credentials

    • Username: Enter the desired username
    • Password: Set a secure password

    Step 3: Contact Info (Optional)

    • Skip or add contact information if needed

    Step 4: Extra Info

    • User Account Status: Select "Enabled"
    • User Group: Select your VPN group
    • Click "OK" to create the user

Managing Existing Users

Modify User Credentials

  1. Navigate to User & AuthenticationUser Definition
  2. Select the user you want to modify
  3. Update password or other settings
  4. Click "OK" to save changes

Disable/Enable User

  1. Navigate to User & AuthenticationUser Definition
  2. Select the user
  3. Toggle the "Disable" checkbox
  4. Click "OK"

Delete User

  1. Remove User References First

    • Go to User & AuthenticationUser Groups
    • Remove the user from all assigned groups
    • Check Policy & ObjectsFirewall Policy and remove user from any policies

  2. Delete the User

    • Navigate to User & AuthenticationUser Definition
    • Select the user
    • Click "Delete"
    • Confirm the deletion
warning

You must remove all references to a user (groups, policies, etc.) before deleting the user account, otherwise the deletion will fail.

Last updated on