Table Of Contents
Numerics - A - B - C - D - E - F - G - H - I - K - L - M - N - O - P - Q - R - S - T - U - V - W - X - Z
Index
Numerics
508 accessibility compliance 1-5
802.11x networks
wireless LANs 5-15
A
accessibiliy compliance 1-5
accessing local LAN 4-8
adapter card for network 2-2
adding
backup servers 4-9
connection entry 4-2
address
VPN device 4-3
Administrator privileges 2-1
AES (Advanced Encryption Standard) 1-7
aggressive mode 1-7
algorithms
data compression 1-8
encryption 1-7
Application Launcher 7-2
Are You There see AYT firewall policy
authentication
algorithms 1-7
Entrust 4-5
extended 1-7
information
connection status 5-22
internal server 5-5
mode 1-7
NT Domain
dialog box 5-5
domain name 5-6
password 5-6
username 5-6
RADIUS 5-5
RSA
next cardcode 5-9
passcode 5-7
PIN 5-8
SecurID 5-7
smart card 5-13
SoftID 5-7
auto initiation
authenticating 5-17
changing option values 5-19
connection failures 5-21
connection profile 5-16
disabling while suspended 5-20
disconnecting 5-19
managing 7-6
restarting 5-20
resuming 5-18
retry interval 7-6
suspending 5-18
using 5-15
autoinstall
VPN Client software 7-20
full installation 7-21
minor update 7-21
profile update 7-22
VPN Client sofware
minor update 7-21
automatic installation of root certificate 2-7
Automatic VPN Initiation option 7-6
autoupdating VPN Client software 7-20
AYT (Are You There) firewall policy 5-25
AYT firewall policy 5-25, 5-26
B
backup servers
adding 4-9
disabling 4-11
enabling 4-9
removing 4-10
Baltimore Technologies 5-10
base 64 encoded file type 6-6
binary encoded file type 6-6
browser proxy configuration 1-5
C
cable
connection 1-2
CA certificates 6-3
Centralized Protection Policy (CPP) firewall policy 5-25
Centralized Protection Policy see CPP firewall policy
certificate
changing password 6-13
completing enrollment form 6-3
connecting 5-10
deleting 6-13
enrollment
file types 6-6
PKI 5-10
with CA 6-3
Entrust 4-5
expiring 5-10
exporting 6-14
importing 6-10
managing 6-8
peer 1-5
stores 6-2
verifying 6-12
viewing 6-9
Certificate Authorities (CA)
CA certificates tab 6-3
certificate 2-2
supported 5-10
Certificate Manager
overview 6-1
changing
certificate password 6-13
password on an enrollment request 6-17
Cisco certificate store 6-2
classes that generate events 7-12
clearing events display 7-14
Client/Server policy
Client IP address in connection status 5-22
closing the VPN Client 5-30
common name in certificate enrollment 6-4
company in certificate enrollment 6-4
completing an enrollment request 6-18
compression algorithm
LZS compression 5-23
configuring
browser proxy on VPN Concentrator 1-5
connect history display
enabling 3-3
connecting
before logon 7-4
to the internet
via Dial-Up Networking 4-11
to the internet via Dial-Up Networking 5-4
with certificate 5-1
connecting to default connection entry 5-2
connection
LAN 1-2
network
direct 2-2
statistics
packets bypassed 5-23
packets decrypted 5-23
packets discarded 5-23
packets encrypted 5-23
resetting 5-30
status
local LAN routes list 5-24
secure associations 5-24
transparent tunneling 5-23
viewing 5-21
technologies 1-2
connection entry
configuring smart card 4-6
creating 4-2
preconfigured 4-1
profile 4-2
connection types 1-2
enabling 3-10
copyrights and licenses 1
country code in certificate enrollment 6-4
CPP firewall policy 5-25, 5-27
creating
connection entry 4-2
D
data
formats xii
data compression 1-8
Dead Peer Detection
default connection entry 4-12
connecting 5-2
default profile 4-12
deleting
certificate 6-13
enrollment request 6-17
department in certificate enrollment 6-4
DHCP request 1-4
DHCP traffic
stateful firewall always on 7-2
Dial-Up Networking
closing before uninstall 7-18
dial-up modem 1-2
disabling 4-12
enabling 4-12
icon on taskbar 5-4
phonebook entries 4-12
programs
third party 4-12
User Information dialog box 5-4
Diffie-Hellman groups 1-7
Digital Subscriber Line
direct network connection 2-2
disabling
application launch before startup 7-5
automatic disconnect when logging off Windows NT 7-5
backup servers 4-11
Dial-Up Networking 4-12
local LAN access 4-8
third party dial-up 4-12
disconnecting
automatic 7-5
private network 5-30
displaying
help 3-13
software version 3-14
DNS server 1-4
documentation
cautions xii
notes xii
domain
name
certificate enrollment 6-4
NT Domain authentication 5-6
DPD
adjusting peer time out 4-9
DSL
connection technology 1-2
DUN phonebook entries 4-12
E
e-mail address in certificate enrollment 6-4
enabling
auto initiation 7-6
backup servers 4-9
local LAN access 4-8
logging on to Microsoft Network 4-6
start before logon 7-4
stateful firewall 7-1
transparent tunneling 4-7
enabling connect history display 3-3
enabling connect on open 3-10
enabling tool tips 3-3
encryption
connection status 5-22
encryption algorithm 1-7
enrolling
certificates 6-3
file request 6-6
in a PKI 5-10
enrollment request
changing password 6-17
completing 6-18
deleting 6-17
form 6-3
managing 6-15
pasting 6-6
viewing 6-16
Entrust
certificate
configuring 4-5
connecting with 5-11
SignOn
using with start before logon 5-12
Technologies 5-10
Erase User Password option 5-5
ESP
protocol
transparent tunneling 4-7
traffic
stateful firewall always on 7-2
etoken
connecting with 5-13
events
classes 7-12
setting logging levels 7-11
severity levels 7-12
viewing and managing 7-7
exiting the VPN Client 5-30
exporting a certificate 6-14
extended authentication 1-7
F
F1 key
displaying help 3-13
features
IPSec 1-6
program 1-3
VPN Client 1-2
file types for certificate enrollment 6-6
filtering
events 7-11
firewalls 5-27
firewalls 5-28
AYT policy 5-25
AYT tab 5-26
Client/Server policy 5-25, 5-29
configured on concentrator 5-25
CPP 5-25
CPP firewall policy 5-27
filtering 5-27
ICMP protocol 5-28
listed on Firewall tab 5-25
matching 7-15
notifications 7-15
policies 5-25
policy listed 5-25
rules 5-27
stateful 7-1
status 5-26
status screen 5-25
tab on status screen 5-25
TCP protocol 5-28
UDP protocol 5-28
formats
data xii
G
generating events
classes 7-12
H
hard disk space requirement 2-2
help
displaying 3-13
F1 key 3-13
from program menu 3-13
hostname
VPN device 4-3
I
IANA protocol numbers 5-28
ICMP protocol
firewalls 5-28
icons
Dial-Up Networking 5-4
VPN Client
viewing when connected 5-15
IKE keepalives 1-6
IKE protocol 1-2
importing
certificate file 6-10
inactivity timeout (Entrust) 5-11
installing
media requirements 2-2
installing VPN Client
InstallShield 2-3
MSI 2-4
process 2-1
interface card for network 2-2
internal server
authentication 5-5
internet
connecting via Dial-Up Networking 4-11, 5-4
Internet Key Management protocol
Internet Protocol Security
IOS
platform devices supported x
IP address
certificate enrollment 6-4
server 5-22
VPN device 4-3
IPSec
attributes 1-7
features 1-6
over TCP 4-8
over UDP 4-8
protocol 1-2
transparent tunneling
connection status 5-23
ISDN
connection technology 1-2
modem 5-3
ISP
password 5-4
username 5-4
K
keepalives 1-6
L
LAN connection 1-2
launching an application 7-2, 7-5
licenses and copyrights 1
connection status 5-24
log display
clearing 7-14
log file
saving 7-13
searching 7-13
log settings
filtering events 7-11
logging levels 7-11
LZS compression 5-23
M
main mode 1-7
maintenance dialog
MSI 2-6
main VPN Client window 3-4
managing
auto initiation 7-6
enrollment request 6-15
event log 7-7
matching firewall configurations 7-15
menu
connection entries 3-6
main 3-6
Microsoft
Certificate Services 5-10
certificate store 6-2
Windows 2000 5-10
Windows Installer (MSI)
installing VPN Client 2-4
mode
aggressive 1-7
authentication 1-7
configuration 1-7
tunnel encapsulation 1-8
modems
dial-up 1-2
ISDN 5-3
requirement 2-2
MSI 2-4
installation 2-4
maintenance dialog 2-6
repair dialog 2-6
MTU size 1-3
mutual authentication
automatic installlation of root certificate 2-7
N
NAT 4-7
NAT Transparency 1-3
network
adapter or interface card 2-2
connection
direct 2-2
Network Address Translation 4-7
notifications
firewall 7-15
upgrade 7-16
VPN device 7-14
NT Domain authentication 5-5
domain name 5-6
password 5-6
username 5-6
NT features
logon 7-4
O
options
Application Launcher 7-2
auto disconnect 7-5
Automatic VPN Initiation 7-6
start before logon 7-4
Stateful Firewall (Always on) 7-1
Windows
Logon Properties 7-3
Options menu 4-7
organizational unit in certificate enrollment 6-4
organization of this manual ix
P
packets
bypassed 5-23
decrypted 5-23
discarded 5-23
encrypted 5-23
passcode
RSA authentication 5-7
passwords
enrollment request
changing 6-17
erasing 5-5
expiration 5-6
internal server authentication 5-5
invalid 5-5
ISP logon 5-4
NT Domain authentication 5-6
personal certificate 6-13
private key 5-1
RADIUS authentication 5-5
saving 5-5
PAT 4-7
peer certificate 1-5
peer response timeout
adjusting 4-9
personal firewall see firewalls
phonebook entries
DUN 4-12
PIN
RSA authentication 5-8
PKCS10 format 6-6
PKIs
Plain Old Telephone Service
Port Address Translation 4-7
POTS
connection technology 1-2
preconfigured connection entry 4-1
private key password 5-1
private network
disconnecting 5-30
privileges required for
installing VPN Client 2-1
profile
connection entry 4-2
default 4-12
Entrust 4-5
roaming 7-6
profile update 7-22
program features 1-3
protocol 1-2
Protocol 50 (ESP) traffic 4-7
protocol numbers 5-28
protocols
ESP 4-7
ICMP 5-28
IKE 1-2
Public Key Infrastructure
Q
quitting the VPN Client 5-30
R
RADIUS authentication
password 5-5
procedure 5-5
username 5-5
RAM requirements 2-2
remote access connection
closing before uninstall 7-18
removing
backup servers 4-10
the VPN Client
InstallShield 7-18
repair dialog
MSI 2-6
requirements
system 2-1
resetting connection statistics 5-30
restarting your computer after installation 2-4
retry interval
auto initiation 7-6
roaming profiles 7-6
root certificate
installing automatically 2-7
RSA (formerly SDI)
authentication 5-7
Next Cardcode 5-9
passcode 5-7
PIN 5-8
rules
firewalls 5-27
S
Save Password option 5-5
saving a log file 7-13
SCEP (Cisco store) 6-2
searching log file 7-13
secure associations 5-24
secure gateway
address 4-3
notifications to client 7-14
SecurID authentication 5-7
Server IP address
connection status 5-22
setting logging levels 7-11
Severity levels in events 7-12
Simple Certificate Enrollment Protocol
smart card
connecting with 5-13
connection entry
configuring 4-6
products supported 4-6
SoftID authentication 5-7
software license agreement 1
software token applications
launching from VPN Dialer 7-2
split tunneling 1-6
start before logon
configuring 7-4
using with Entrust SignOn 5-12
starting the VPN Dialer
connecting to private network 4-2, 5-2
stateful firewall
always on 7-1
DHCP traffic 7-2
transparent tunneling 4-8
state in certificate enrollment 6-4
statistics
local LAN routes 5-24
status
firewall 5-26
stopping the VPN Dialer 5-30
stores
certificate 6-2
system requirements 2-1
T
TCP/IP requirement 2-2
TCP protocol
firewalls 5-28
transparent tunneling 4-7
third party dial-up program 4-12
tool tips
enabling 3-3
transparent tunnel 4-7
transparent tunneling 1-6
enabling 4-7
stateful firewall 4-8
tunnel
definition 1-2
negotiation 5-5
transparent 4-7
tunneling
encapsulation mode 1-8
protocol 1-3
split 1-6
U
UDP protocol
firewalls 5-28
transparent tunneling 4-7
UniCERT 5-10
uninstalling the VPN Client
InstallShield 7-18
updating profiles automatically 7-22
updating VPN Client software
automatically 7-20
upgrade notification 7-16
upgrading VPN Client software
using InstallShield 7-17
using MSI 7-16
username
internal server authentication 5-5
ISP logon 5-4
NT Domain authentication 5-6
RADIUS authentication 5-5
V
verifying a certificate 6-12
version
VPN Client
displaying 3-14
viewing
certificate 6-9
connection status 5-21
enrollment request 6-16
Virtual Private Network (VPN)
defined 1-1
VPN
defined 1-1
VPN Client
applications 1-1
event log 7-7
features 1-2
installing 2-1
menus 3-6
version 3-14
window 3-4
VPN Client API 1-5
VPN Client version 3.6
removing 2-6
VPN device
authentication using internal server 5-5
backup 4-9
Cisco 1-1
DPD 4-9
hostname 4-3
IP address 4-3
notifications 7-14
VPN Dialer
closing 5-30
main dialog box 4-2
W
Windows
NT logon properties 7-3
platforms requirement 2-1
WLANs
auto initiation 5-15
X
X.509 DER file 6-6
XAUTH (extended authentication) 1-7
Z