Using this client to connect to the VPN. Is there some way to have the client connect from a command line (batch file) so it will connect automatically on Windows startup?
We use the OpenVPN client to connect to the Watchguard SSL VPN. I believe you can launch it from the command line with:
openvpn-gui.exe --connect "client.ovpn" --config_dir "C:\Users\burnbern\Documents\openvpnconfig"
I’ve only been able to accomplish this using the IKEv2 VPN unfortunately.
I haven’t done this myself, but if you are domain joined, then if you configure your firebox to allow sign on via that method and then enable the app to auto start, save credentials etc then i would have said this is possible…
Unfortunately no. Watchguard’s Mobile VPN capabilities are sorely lacking. It’s just a bare-bones implementation of OpenVPN.
What we’ve been doing for our clients is deploying another vendors products for MobileVPN (ie: BigIP F5).
Looks feasible in principle, just needs testing.
check Launch program on startup in Properties and check Reconnect Automatically at the login screen?
Thanks, I’ll give that a try.
Wouldn’t that require storing the login credentials in plaintext?
Unfortunately IKE mobile VPN is terrible and shouldn’t be used.
That being said, there really isn’t an alternative for Watchguard if you want this capability.
IKEv2 VPN
I’m a dummy. Is this a protocol, or another client?
Good suggestion, but unfortunately I don’t have access to the firebox myself, it’s managed by someone else.
That looks very promising. I’ll give it a go tomorrow. Thanks!
Reconnect automatically only attempts to reconnect after lost/dropped connections. You need to initiate a connection manually first.
If the user can enter the password when the GUI launches and you’ve built OpenVPN with save password enabled OpenVPN would securely store the password for next time.
If trying to hide the password from the user and domain joined the best bet would be to store the pass in the OpenVPN auth file (in plain text) in a place the user cannot access but grant permissions for it when launching OpenVPN. Or Powershell could be used to store the creds in Windows Credential Manager and temp write the OpenVPN auth file.
WatchGuard has a page: Use Mobile VPN with SSL with an OpenVPN Client
Or you could find your current profile on your local machine at C:\Users\burnbern\AppData\Roaming\WatchGuard\Mobile VPN\client.ovpn
It’s another connection option in the firewall. I use Win 10 VPN built-in VPN to use it, and theres a script that can be run on startup to automatically connect to it.
Not able to submit a change request? Not asking for the earth with that setup?
yep realized that as soon as I posted 
Oh I like that last option, thanks! I’m going to bring that up with my team.