I get a lot of questions about SonicWALL VPNs, so I thought I’d clear up some of the mystery. This article will describe the Event ID that is generated when a user logs in with an unsecured SonicWALL account.
If you have a SonicWALL VPN service and have yet to set up proper authentication, then you’re potentially exposing your network to the risk of cyber-attack. Having an unsecured SonicWALL account is like having a doorbell with no lock on it. The whole point of a VPN service is to keep your network protected, so it’s essential that you take the time to set up a secure connection. If you’re worried about your security, then you should consider using a VPN service that is backed by a trusted security company such as Norton Secured or Entrust Datacard.
Why Do I Need to Setup Proper Authentication?
It’s no secret that people are more likely to click on a URL or open an email attachment than they are to type in a long username and password combination. Keeping your network secure means limiting the risk of cyber-attacks. One way of limiting the risk of cyber-attacks is by requiring a username and password to access your network.
This brings us to the first point; if you don’t have authentication set up properly, then anybody with a little bit of tech know-how could potentially access your network. A VPN service that is set to automatically connect without asking for a username and password is leaving you more at risk than if you had set up proper authentication. The good news is that setting up authentication is actually fairly easy.
How Do I Set Up Proper Authentication?
The first step to creating a secure connection between your computer and a VPN is to install and configure the VPN client. The SonicWALL client is extremely easy to use and won’t require any technical expertise to set up. If you’re already using a VPN client, then you can skip directly to the next step.
Once you’ve installed the SonicWALL client, connect to a VPN server that is backed by a trusted security company. Select “Create New Account” and follow the instructions to create a new account with a username and password. It’s that easy! Next, download and install the VPN software on both your computer and mobile device. Once you’ve created the account, you can login to the VPN client on your computer and use the app to connect to the VPN server. When you’re connected to the VPN server, you’ll see the “CONNECTED TO VPN” notification. If you have a mobile device, then you can use the VPN app to connect to the server as well.
What Is The Even ID?
Ok, now that you have a secure VPN connection set up, it’s time to figure out what the next step is. When you login to the SonicWALL VPN client on your computer, you’ll see a small lock icon in the upper right-hand corner. Click on this icon and you’ll see a small window pop up. In this window you’ll see a list of your current VPN connections along with some important information about each connection. (If you have more than one VPN connection, then you’ll see a list with a check mark next to each connection.)
The list of connections will tell you which connection is active and which one you ought to use to login to your account. The active connection is the one that is currently being used. In most cases, the first connection in the list will be the active connection. The information that is provided in this window includes the following:
- Connection Name
- Connection Type (L2TP/IPSec)
- Connection Protocol (PPP or SLAAC)
- Cipher (AES, 3DES, or SHA256)
- Encryption Level (OpenVPN Only)
- Status (Online or Offline)
- Authentication Type (Password or Certificate)
- Description (Optional)
If you connect your computer to a VPN server using the OpenVPN protocol, then you’ll need to generate a Certificate Authority (CA) certificate to connect. You can find detailed instructions for generating a CA certificate in the OpenVPN Documentation. Once you have the certificate authority, you can create and manage your own VPNs using the OpenVPN GUI or the CLI.
SonicWALL Event ID
If you use an unsecured account with SonicWALL, then you’ll see a “Login Failed” message under the Connection Status column. This is a security audit notification from SonicWALL. Each time that you use an unsecured account with the company, you’ll see this message. To see what the Event ID is for an unsecured account, click on the “View Details” button next to the “Login Failed” message. You’ll see a short text string that begins with an “M” followed by a set of numbers. (If you see this article after March 31, then the Event ID will begin with an “N” instead of an “M”.)
The Event ID is an important number because it will help you identify and solve any potential security issues that you may have. By having a full history of incoming activity available in the form of logs, you can easily find any connection that has been attempted that should not have been attempted. When you visit https://security.sonicwall.com, then you’ll be presented with a list of recent activity. Each connection attempt will have a unique Event ID that can be used to find the attempted connection in the event log. The more Event IDs that you have, the greater the chance that you’ll be able to solve any potential security problems. In most cases, the Event ID for an unsecured account will be a four-digit number. You can find a list of the possible Event IDs below.