Has anybody tried OpenEMR behind SSL-Explorer? www.3sp.com
I would be interested in experiences. We have it working through a Java tunnel but would probably need to tweak OpenEMR and/or SSL-Explorer a bit to get them working through a reverse proxy, which would be the best way to do it resource wise.
I understand the ease of using SSL based VPNs but there is not benefit from a technical standpoint. In fact with 15 years in the security industry I think going to non client based VPNs is a bad idea. Business is driving it, but that is unfortunate. It is much better when you have to have the software and must authenticate. I highly recommend looking into products such as OpenVPN for your VPN users. For a quick and dirty implementation look to www.pfsense.com which includes OpenVPN. There is also a good step by step guide of how to setup OpenVPN with PFSense.
Overall there should be no reason why any SSL VPN should not work with OpenEMR as it is just a web based application like any other.
Thank you for pointing to pfsense.com and OpenVPN. There are reasons why SSL Explorer is better for us, (including access from Windows boxes without Administrator rights which makes installing software impossible) but let’s keep that discussion out of the OpenEMR forum. Still interested to find out how to get OpenEMR working under SSL Explorer. There are some issues with getting it to work with the reverse proxy. Using the Java agent is easy.
If you search back in these forums, (Way back) There were users who set up using SSL in Windows. It didn’t seem that they had much difficulty. The posts were back about 15 - 18 months ago.
As a quick note,
then you’ll want two layers,
one to log in apache itself,
then openemr,
you cannot let openemr exposed without at least another security layer,