Use the Servers page to view the status of SSL VPN servers, to modify their configuration, to create or delete clusters, or to stop and start the server.
In the Administration Console, click > .
Select one of the following options:
New Cluster: Displays the New Cluster dialog box, where you can specify a name for your SSL VPN configuration and assign an Identity Server. When you click , the system displays the Create Cluster Configuration page, which lets you configure how your Identity Servers operate in an Access Manager configuration.
Stop: To stop the SSL VPN server so that the power can be turned off, select the SSL VPN Server, then click .
Start: To start the SSL VPN server, select the SSL VPN server, then click .
Refresh: Use this option to update the list of servers and their health status.
To perform an action available in the drop-down menu, select an SSL VPN server, then select one of the following:
Assign to Cluster: To add the selected SSL VPN server to a cluster, select , then select the cluster. This SSL VPN is reconfigured with the configuration of the primary cluster server.
Remove from Cluster: To remove the selected SSL VPN server from a cluster, select . The SSL VPN server retains its configuration from the cluster, but no traffic is sent to it until it is reconfigured. You can assign it to a different cluster and have it updated with the new cluster’s configuration, or you can delete all of its reverse proxies and start a new configuration.
Delete: To remove the selected SSL VPN server from the list of servers that can be managed from this Administration Console, select . If the SSL VPN server is a member of a cluster, you must first remove it from the cluster before you can delete it.
IMPORTANT:When an SSL VPN server is deleted from the Administration Console, you can no longer manage it. To access it again, you must manually trigger an auto-import, which causes it to import into an Administration Console.
Update Health from Server: Click this action to send a request to the server for updated health information. If you have selected multiple servers, a request is sent to each one. The health status changes to an animated circle until the reply returns.
Service Provider: Select one of the following actions:
Start Service Provider: To start the Embedded Service Provider associated with the selected SSL VPN, click . The Embedded Service Provider is the module within the SSL VPN that communicates with the Identity Server.
The Embedded Service Provider should be restarted whenever you enable or modify logging on the Identity Server.
Stop Service Provider: To stop the Embedded Service Provider associated with the selected SSL VPN, click . The Embedded Service Provider is the module within the SSL VPN that communicates with the Identity Server.
When an SSL VPN is not functioning correctly, you should always try stopping and starting the service provider before stopping and starting the SSL VPN.
Restart Service Provider: To restart the Embedded Service Provider associated with the selected SSL VPN, click . This command stops the Embedded Service Provider and then starts it. The Embedded Service Provider is the module within the ESP-enabled SSL VPN that communicates with the Identity Server.
When an Access Gateway is not functioning correctly, you should always try restarting the Embedded Service Provider before stopping and starting the Access Gateway.
Use the following links to manage a cluster or an SSL VPN server:
Name: Displays a list of servers that can be managed from this administration console. This also displays the name of the cluster, if you have configured one. Click the link of a particular server to view or modify its configuration. For more information, see Viewing and Editing SSL VPN Server Details.
Status: Indicates the configuration status of the SSL VPN server. Possible states are pending, update, and current.
indicates that all configuration changes have been applied.
indicates that a configuration change has been made, but not applied. Click this link to apply the changes.
indicates that the server is processing a configuration change, but has not completed the process.
Health: Indicates the health of the SSL VPN server. Click the icon to view additional information about the functional status of an SSL VPN server.
Alerts: Indicates whether any alerts have been sent. Click the link to view additional information about alerts. This option is not available to you if the alert count is 0. For more information, see Viewing SSL VPN Alerts.
Commands: Indicates the status of commands issued to servers. For more information, see Viewing the Command Status of the SSL VPN Server.
Statistics: Indicates the number of active client connections and the time when the Gateway was started. Click to get the statistics information. For more information, see Viewing the SSL VPN Server Statistics.
Type: Indicates the type of SSL VPN that is installed. This section indicates whether the SSL VPN server installed is an SSL VPN protected by the Access Gateway or if it is a standalone SSL VPN. It also indicates if the SSL VPN version is high-bandwidth or low-bandwidth. For example, if the high-bandwidth version of SSL VPN protected by the Access Gateway is installed, then the displayed is .
Configuration: Indicates the date and time when the last modification was made. It also indicates the fully distinguished name of the user who made the last modification. Click to view and modify the SSL VPN configuration. For more information, see Configuring SSL VPN Servers.