Lesson 18: Providing Security via the VPN Service Flashcards
Understand the benefits of virtual private network (VPN); Configure the VPN service
What kind of users would benefit from using the VPN service?
Users who are away from your local network can use the VPN service to securely access resources available on your local network.
What is an easy way to help your users running OS X to quickly configure their computers to use your server’s VPN service?
In the Server app sidebar, select VPN, click Save Configuration Profile, and distribute the resulting mobileconfig file to your users. When a user of a computer running OS X Lion or Mountain Lion opens the mobileconfig file, the Profiles preferences automatically opens and prompts the user to install the configuration profile. You can also distribute the mobileconfig file to users of iOS devices.
What two protocols does the OS X Server VPN service support?
L2TP and PPTP.
What are the differences between the two supported VPN protocols?
L2TP is more secure, but PPTP is compatible with older VPN client software.
If the shared secret becomes discovered, does this mean that anyone in the world can now use your server’s VPN service?
Not necessarily; even if the shared secret becomes published, users still need to authenticate with a username and password to establish a VPN connection.
What do you need to do if you decide to change the shared secret?
If you change the shared secret, all your VPN service users must change the shared secret in their VPN configurations. You can facilitate this change by saving a new configuration profile and distributing the new mobileconfig file to your users.
