Checking Host Processes

The basic SSL VPN configurations have been completed.

Choose Network > SSL VPN > SSL VPN.
Click for an SSL VPN gateway.
Choose Terminal Security > Host Check.
Select Host Check Function under Global Configuration, click Add under Host Check Policy List, and create a host check policy.
- Process name: name of an application process.
  The Windows system is used as an example to describe how to view the name of an application process: Open an application, and navigate to Task Manager of Windows. On the Applications tab page of the Task Manager, right-click an application and choose Go To Process from the shortcut menu. The process name of the application is displayed.
- Must be open: Only the terminals on which the specified processes are enabled can pass the policy check.
- Cannot be open: Only the terminals on which the specified processes are disabled can pass the policy check.
- Verification Code: Process names may be maliciously changed to evade process inspection. To protect the integrity of process names, SHA256 or MD5 values can be used to uniquely identify a process. The device uses the hash values to verify the integrity of processes.
Select Role Authorization/User, reference a created host check policy in the corresponding role, and click OK.

Enter https://1.1.1.1:443 in the address bar of Internet Explorer to access the SSL VPN login page.
In the login window, enter the user name and password, and then click Login.
If the Excel process is not running on the host, the host passes the check, and the user can log in to the virtual gateway successfully. If the Excel process is running on the host, a message indicating that the terminal security check fails is displayed in the browser. The browser also provides suggestions on how to pass the security check.