Register now or log in to join your professional community.
The answer to your question has two parts :
First Since SSL VPN works on HTTPS ,you should buy a public certificate for your web authentication page that come from the SSL VPN device from Public certfication Authority such as Verisign and Digital Cert , this will insure that the connection between client and server is not only encrypted via HTTPS but also is verfied by those public authorites .
Second :It's necessary that the users how access the local network via SSL VPN are domain users , this mean that the SSL VPN device has to integrate with the Domain Controller , this can be done via LDAP or Radius authenticaion , but this necessary to make sure that the firewall doesn't have users installed locally on it but in this case the firewall will ask the third party "Which is the domain contoller to give the previllages of access according to the user himself in addition to the firewall provided security .
please note that having gateway antivirus and IDP are great to prevent any expected attack or virus that might come from user PC through files sharing or moving
I believe having those will protect you and will provide a huge level of security
