Connecting the LogonBox Linux VPN client (Debian 11)

Christopher Dakin

The LogonBox branded VPN client adds extra functionality to a generic WireGuard client, most notably it will automatically generate and manage your client configuration files, as well as adding support for multi-factor authentication.

The client can be downloaded from the LogonBox VPN UI.

 

1. Installing the client

Navigate to https://<logonboxserver> and log on with your user account into the User Portal.

 

You should be presented with the Overview page.

The OS should be detected correctly and the download should default to your current client OS.

You can choose to download a client for another OS by clicking the dropdown and selecting which client you need.

Click the Download button to get your client.

 

 Launch the client installer with sudo sh ./logonbox-vpn-client-unix-amd64-2.4.0-708.sh (version number may differ) and click Next.

 

Accept the license agreement and click Next.

 

Accept the default install location or browse to a directory of your choice and click Next.

 

Accept the suggested components and click Next.

 

Chose the name of the folder where you want the symlinks to be installed and click Next.

 

The client files now install. Click Finish to complete the install.

 

 

2. Connecting the client

Launch the client.

 

You may be presented with the following page on first launch.

If so, install the tools from a terminal with

sudo apt install wireguard-tools

 

Enter your LogonBox VPN hostname in the Server Address field and click Connect.

You can choose to have this connection launch automatically when you log in to your computer with the Connect to this network when my computer starts option.

Stay connected to this network will automatically restart the connection if it drops for any reason.

 

You must have an SSL certificate configured with the correct hostname, otherwise you will get errors such as below when connecting.

 

A self-signed certificate should work, but it is recommended that you install a signed certificate before making your service live.

For further information regarding installing an SSL certificate, see Obtaining a Trusted SSL Certificate.

 

Enter your user credentials when prompted and click Next.

 

If you opted to set up 2-factor authentication, you will be prompted to enter any missing information or register authenticators here.

 

Run through these prompts to set up your profile for 2-factor authentication.

After authentication, the device should register and start connecting.

 

After which, the client should connect.

 

You should now be able to access addresses in the remote network.