Adding a Built-in VPN Connector
Tenants who do not have an OpenVPN license and want to use Kron PAM’s secure connection can use its Built-in VPN option (either outbound or inbound).
The outbound connection refers to the path that begins from Kron PAM and ends at the Connector. If the outbound connection option is selected, the connector located at the customer site must be accessed through a UDP port and utilizing the external IP address.
The Inbound Built-in VPN option refers to the connection established from the remote connector node to Kron PAM.
Connector installation packages are uploaded to Kron PAM’s Filerepo. The Kron support team provides the required information to access installation files. Please refer to the Tenant Connector Reference Guide.
To create an Outbound Built-In VPN Connection:
- Navigate to Tenant Connector.
- Open the Connector Sites tab.
- Click the Add button, enter the remote site name and description, and click Save.
- Open the Connector Node tab.
- Click the Add button and select the Outbound Built-In VPN option.
- Select the remote site name, enter the node name, tunnel port, connection port, connector node external IP, and the SSH RSA Key created during the connector node installation, and click Save.
To create an Inbound Built-In VPN Connection:
- Navigate to Tenant Connector.
- Open the Connector Sites tab.
- Click the +Add button, enter the remote site name and description, and click Save.
- Open the Connector Node tab.
- Click the Add button and select the Inbound Built-In VPN option.
- Select the remote site name, enter the node name, tunnel port and Kron PAM Instance External IP, and click Save.
- After the node is added to the GUI, a configuration file is created.
- The user can download the tunnel configuration file. The tunnel creation script on the connector node (connector_node_setup.sh) gets tunnel_setup.txt file as an input and creates a tunnel between the connector and Kron PAM.
