Clientless access presentation
Client-free access to Sophos XG firewalls allows connections to corporate servers without a VPN client by going directly through an internet browser as Citrix does.
Clientless access configure
Firewall configuration
1. Go to the firewall administration interface.
![Connexion au Sophos XG](https://rdr-it.io/wp-content/uploads/images/01-login-sophos-xg-590x400.png)
2. From the navigation menu go to Administration 1 / Device Access 2 and verify that the User Portal 3 is available from the WAN interface. If not, check the box and click Apply 4.
![Autoriser l'accès sans client depuis le WAN](https://rdr-it.io/wp-content/uploads/images/02-portail-user-wan-acces-600x352.png)
3. From the navigation menu go to Administration 1 / Administration Parameter 2 and note the port of the user portal 3.
![Vérification du port pour le portail](https://rdr-it.io/wp-content/uploads/images/03-verification-port-portal-600x364.png)
4. Before configuring access to the portal, you must declare a Favorite, here the server that you want to make available via the portal. Go to VPN 1 / Favorites 2 and click the Add button 3.
![Favoris pour accès](https://rdr-it.io/wp-content/uploads/images/04-vpn-favoris-600x363.png)
5. Enter a Name 1 and a description 2 to identify the resource. Choose the type RDP 3, enter the IP address of the server 4, port enter the port RDP 5 (default 3389) and click Save 6.
![Ajout d'un serveur](https://rdr-it.io/wp-content/uploads/images/05-form-add-favoris-600x373.png)
6. Server 1 is added to favorites.
![Serveur ajouté](https://rdr-it.io/wp-content/uploads/images/06-serveur-ajoute-favoris-600x211.png)
7. Now, you have to configure a clientless access to which we will define the available favorites. Click on VPN 1 / Clientless Access 2 / Add 3.
![Listes des accès](https://rdr-it.io/wp-content/uploads/images/07-ajout-profil-600x364.png)
8. Enter a name 1 and description 2. Select in which the strategy should be applied 3 and resources (bookmarks) published 4 (here the server) and click Apply 5.
![Ajout d'un acces](https://rdr-it.io/wp-content/uploads/images/08-form-acces-ss-clt-595x400.png)
9. Confirm the application of the policy by clicking OK 1.
![Confirmer l'application de la stratégie](https://rdr-it.io/wp-content/uploads/images/09-confirmer-application-400x73.png)
10. We find the access without client in list 1.
![Stratégie ajoutée](https://rdr-it.io/wp-content/uploads/images/10-acces-ss-clt-cree-600x223.png)
Using clientless access
1. From a computer, launch an internet browser (preferably Chrome) and go to the portal https://xxx.xxx.xxx.xxx:4443
2. Enter the identifiers 1 and click on Connection 2.
![Connexion au portail](https://rdr-it.io/wp-content/uploads/images/11-connexion-portal-600x304.png)
3. On the navigation menu go to SSL VPN 1. The page displays the clientless access configured in the policy. Click on it 2.
![Accéder aux favoris](https://rdr-it.io/wp-content/uploads/images/12-portal-ssl-vpn-600x197.png)
4. A new window opens, wait while connecting.
![Connexion en cours...](https://rdr-it.io/wp-content/uploads/images/13-fenetre-connexion-rdp-600x334.png)
5. Switch the keyboard to AZERTY, click on Keyboard 1 / Keyboard Layout 2 / Frech3. Enter login 4 to login.
![Passer le clavier en AZERTY](https://rdr-it.io/wp-content/uploads/images/14-keyboard-connexion-600x328.png)
6. Connection established to the server.
![Connecté](https://rdr-it.io/wp-content/uploads/images/15-server-ok-600x333.png)