Chapter 16 SSL VPN : Basic configuration : Additional configuration options : Configuring virtual desktop
  
Configuring virtual desktop
Available for 32-bit Windows XP, Windows Vista, and Windows 7 client PCs, the virtual desktop feature completely isolates the SSL VPN session from the client computer’s desktop environment. All data is encrypted, including cached user credentials, browser history, cookies, temporary files, and user files created during the session. When the SSL VPN session ends normally, the files are deleted. If the session ends due to a malfunction, files might remain, but they are encrypted so that the information is protected.
When the user starts an SSL VPN session that has virtual desktop enabled, the virtual desktop replaces the user’s normal desktop. When the virtual desktop exits, the user’s normal desktop is restored.
Virtual desktop requires the Fortinet cache cleaner plugin. If the plugin is not present, it automatically downloads to the client computer.
 
It should be noted that virtual desktop was only tested on Internet Explorer 8.0 and may not work on newer browsers. Furthermore, there are currently no plans to update virtual desktop support for newer browsers.
To enable virtual desktop :
To enable virtual desktop on the full-access portal and apply the application control list ‘List1’, for example, you would enter:
config vpn ssl web portal
edit full-access
set virtual-desktop enable
set virtual-desktop-app-list List1
end
See Also
Configuring virtual desktop application control
Routing in tunnel mode
Changing the port number for web portal connections
SSL offloading
Customizing the web portal login page
Host check
Windows OS check
Configuring cache cleaning
Configuring client OS Check
Adding WINS and DNS services for clients
Setting the idle timeout setting
SSL VPN logs
Monitoring active SSL VPN sessions