Adito (Now called OpenVPN ALS)

 

About
Adito is an open-source, browser-based SSL VPN solution. It’s a remote access solution that provides users and businesses alike with a means of securely accessing network resources from outside the network perimeter using only a standard web browser.

Background
This is the open-source clone of SSL-Explorer after it went biz-o-matic.

Windows installer
My contribution to this project is a Windows-installer, check it out here, if you are looking for the SVN-version of Adito download here

Step-by-step guides
There are now three guides written by me on the topic.
1. Scroll down on the installer page for installation-tips
2. Scroll down on this page for a simple demonstration of a port-forward
3. NEW! Practical RDP guide here
4. Read the guide on running the Java 7 version 51

What the buzz about?
Pictures says more than words so please take a look in the pictureseries with description below.

You are first presented with a login window:
Login window

After successfully logging in you are at the main window
Main Window

Usally the SSL Tunnel are common used. This technique open a port locally and forward it throught the server and to your destination.
In this example we create a port forwarding on port 4040 locally requests to google.com on port 80 (www-default-port)
Create SSL Tunnel

After the creation we start the Agent. This is the software you run in the remote location straight from the browser. Since it uses default-java you would find access almost everywhere.
My rule is; if you can connect to your bank you can use Adito ;)
Agent launching

When it has launched you got a new little man-like icon in your sys-tray
Agent in systray

By right-clicking on the agent you will find items you have configed on the server. In our case the tunnel “Test” is available
Agent options

When the tunnel is activated the agent notify you and we are ready to use it
Agent SSL Tunnel open

Now for some magic :) Connect to google through your server
Surfing through SSL Tunnel

As you can see this is pretty easy to use and manage a great product!

Check out the new guide on setting up RDP here

 Posted by at 13:51:53

  122 Responses to “Adito (Now called OpenVPN ALS)”

  1. Hello, i am using Adito for my web application in which we used capcha (jcaptcha-api-1.0.jar) but Adito does not find .jar file of jcapcha when try to compare user input with capcha image. I think Adito is unable to access all libraries. Please help
    Thanx

    • Hi Usman,

      I’ve never used capcha on Adito before.
      But I believe you need to change the web layout on the login-screen for implementation.
      The reference to the jar there will decide the path of the *.jar loaded.

      Regards. Lars

  2. Hi

    hi Lars

    recently my company upgrade primary domain controller (add to older 2003 r2 a new 2012 64 bit pdc); i used adito for years with active directory integration, without no one type of problem, only little friction during active directory initial configuration (upper case DOMAIN.LOCAL and other)

    Now, when i create new user with 2012 server, adito not recognize it, and work only if i set to “simple” the field “user authentication type” during installation, while “service account type” not work at any condition when add user from 2012; the actual administrator works only beacause it’s an old account from 2003 server importend.
    I spend much days and testing for understanding wich is the real problem, adito is configured to connect to 2012 server without backup server: when add user from 2012 not work both auth then service account, when create from 2003 server it works (service and auth); i have also copy the old account administrator to now testind admin with same identical policy and property, from 2012, without success.

    At home i’m trying all type of adito/ssl Explorer windows/Linux and your svn version both version with a 2008 server testing domain, the ldap administrator works fine, adito doesn’t want to work.
    Typilal error is “User database could not be opened. Internal error.”

    I think that the user record in 2008/2012 is differente from 2003, and adito not recognize it or read wrong.

    any ideas?

    thx lot

    p.s. sorry for my english :)

  3. Hi Lars,

    Thank you for your installer. I have recently begun seeing a Java security warning mentioning that applications by unknown publishers will be blocked in a future release. I was only able to get adito running with an older version of the java runtime on the server (version 6 update 17). If I use the SVN version, will I be able to update the java version on the server and avoid users being blocked when they next update java on their client machines? Any advice would be appreciated and thanks for your hard work.

    Here is more detail on the warning: This application will be blocked in a future Java security update because the JAR file manifest does not contain the permissions attribute. Please contact the Publisher for more information.

    Mike

    • With the latest Java 1.7.0_51, this went from a warning to actually blocking the applet from running. The only way I could get it working again was to lower the Security level in the Java Control Panel (jcontrol) to Medium, from its default of High.

      • Hi Lars and Dave,
        I found another way to permit people to connect to adito by adding the complete url of the adito server into java security configuration tab, under the exceptions list.
        A pop up appears but let you to choose to launch or not the applet.

  4. Long time ssl-explorer user, just switched over to Adito.
    I have a problem when I configure the Java Agent Properties, when I set the values for Timeout, Keep-Alive,Shutdown interval etc. they seem to be multiplyed by 1000? Eg I set a value of 10 seconds, when I click save it sets the value to 10000
    Any idea why this may be happening or how to fix, its quite annoying as the agent keep shutting down.

    Thanks

  5. Hi,

    Do you have/know any ssh cross-platform app to openvpn-als like this one(http://waldemar.schlackow.de/node/10)?

    Thanks
    John

Leave a Reply