Chapter 16 SSL VPN for FortiOS 5.0 : Basic Configuration : Additional configuration options : Configuring virtual desktop
  
Configuring virtual desktop
Available for Windows XP, Windows Vista, and Windows 7 client PCs, the virtual desktop feature completely isolates the SSL VPN session from the client computer’s desktop environment. All data is encrypted, including cached user credentials, browser history, cookies, temporary files, and user files created during the session. When the SSL VPN session ends normally, the files are deleted. If the session ends due to a malfunction, files might remain, but they are encrypted, so the information is protected.
When the user starts an SSL VPN session which has virtual desktop enabled, the virtual desktop replaces the user’s normal desktop. When the virtual desktop exits, the user’s normal desktop is restored.
Virtual desktop requires the Fortinet cache cleaner plug in. If the plug in is not present, it is automatically downloaded to the client computer.
To enable virtual desktop
To enable virtual desktop on the full-access portal and apply the application control list List1, for example, you would enter:
config vpn ssl web portal
edit full-access
set virtual-desktop enable
set virtual-desktop-app-list List1
end
See Also
Configuring virtual desktop application control
Routing in tunnel mode
Changing the port number for web portal connections
SSL offloading
Customizing the web portal login page
Host check
Windows OS check
Configuring cache cleaning
Configuring client OS Check
Adding WINS and DNS services for clients
Setting the idle timeout setting
SSL VPN logs
Monitoring active SSL VPN sessions