Redundant or unclear terms were changed on the client interface. Most term changes are hardly noticeable and are self-explanatory due to the logical menu sequence. The most noticeable terms are "destination system" and "phonebook".
The individual configurations of "destinaton systems" were called "phonebook" in older Enterprise Client < 9.1 versions. They are now called "profiles" as of this version. To change a profile, select the configuration menu item "profiles", choose a defined "profile" and open the "profile settings". The "destination system" or "destination name" are now called "profile" and "profile name". The term changes have been included in the online help and into the pdf documents.
The configured profiles can be combined into groups, which can then be easily selected via the context menu of the client monitor. This can increase the clarity of existing connection profiles for the user since he/she can opt to display only desired entries.
The easiest way to carry out secure client documentation is with the client navigator, a pdf file which displays a structured overview of the client's performance features and with a simple mouse click the user is directed straight to the relevant description.
The budget manager helps to monitor connection costs of available connection types, the focus hereby lies on UMTS or GPRS as well as WLAN connections. Here, time/volume limits per configuration are specified. The user can already be warned before the specified limits are exceeded by guidelines. Depending on the settings, further connections may be prevented once the set threshold has been exceeded. An additional advantage of the budget manager, next to cost control, is the limiting/prohibition of roaming.
A number of individual certificate settings may be saved as multi certificate configurations in the client configuration. Per profile, one certificate configuration can be chosen from the selection. The different certificates enable authentication against different VPN remote stations e.g. to VPN gateway 1 with soft certificate and to gateway 2 with a certificate saved to smartcard.
The certificate of this certificate configuration can be selected in the configuration field "security" for encoding and authentication in security modus L2Sec or for extended authentication in security modus IPSec.
The certificate configuration of a client older than version 9.1 will, in case of an update to this version, automatically be converted to the standard certificate configuration. The standard certificate configuration is set up after an initial installation of version 9.1.
Pre-configurable with:
- Management Server Version 2.02
- Management Console Version 2.02
- Client Plug-in Version 9.10
If the certificate number "0" is configured, then the certificate found first with the extension "SSL client authentication" is used.
In future, the client supports via WISPr (wireless internet service provider roaming) registration without a browser in T-Mobile hotspots in Germany (incl. ICE trains of Deutsche Bahn), Austria, Czech Republic, Netherlands and UK as well as in Lufthansa lounges in larger international airports.
The user information is saved in the client configuration and log in/out at the hotspot can be combined with the VPN connection.
Log and error messages were revised and their informative values were increased to optimize user help desk support. An overview with the following information is available:
- Client version (incl. build number)
- Current connection status (connected, broken, broken with error)
- Client service status
- Current certificate configuration (incl. validity)
- VPN user ID
- User for management server connection
The performance of the secure client in connection with UMTS cards was improved, especially when the system returns from standby or after card error or non-availability of a card. Furthermore, the client automatically recognizes the device with an inserted SIM card if several UMTS devices are active.
French was added to the available language versions of the client interface.
Several log outputs are displayed in color on the monitor. All logs beginning with the word "ERROR" are displayed in RED and all logs beginning with the word "SUCCESS" are displayed in GREEN.
All logs can be selected with the key combination CTRL A and copied to the clipboard with CTRL C. A popup menu with both functions was added additionally. Log outputs can be copied and inserted into another document (e.g. email).
"READER.INI" is required for the profile configuration (CNF files) via SEM. This file discloses at the SEM which chip card readers are available.
The "READER.INI" file has to be generated via the command line tool RWSCMD. Call: rwscmd /WriteReaderIni [OutputPath]
The Windows log in dialog of NCP GINA is displayed on the windows operating systems (VISTA) as an icon for a user account in the same way Windows user accounts are displayed. If the log in dialog has to be shown immediately after starting up in the maximised version, then it is possible to preset this in the "login options" of the client monitor configuration menu in the menu item "options" by selecting "open dialog for connection establishment automatically".
If only one user account is set up in Windows Vista, then this account is always opened without displaying the user and NCP provider credentials icons. The windows user icons and the NCP provider credentials are only visible again once "change user" is selected. The above mentioned option can be activated in order to avoid this.
Improvements were also made to the Friendly Net Detection areas as well as IPSec compatibility.