Installing Adito/OpenVPN-ALS On CentOS

OpenVPN-ALS, formerly known as Adito, is not to be confused with OpenVPN. They both brilliant tools that work in completely different things, but in a similar way. Confused? Excellent…

OpenVPN-ALS (from now on known as Adito, because I find it less confusing) is a browser based SSL VPN that enables you to acess resources on your own network, even if you are behind a restrictive proxy and/or firewall.

First you need a basic install of CentOS. The absolute base system is plenty. One thing to note is that to get the best from this it cannot share space with another web server as it takes up port 443. Make sure Apache/Nginx et al are not installed.

The next step is to install a couple of essentials. OpenVPN-ALS is a java applications, so obviously you need a JRE (in fact you need a JDK), plus it uses Ant for building. The Adito project work purely in branches, to the trunk should be stable.

First get Oracle Java and install it. You can use the instructions here to help you. You will need to configure javac and jar as well.

sudo yum install subversion ant

Just to be sure run sudo update-alternatives -config java to make sure you are using the latest one:

[chris@adito ~]$ sudo update-alternatives --config java

There is 3 program that provides 'java'.

Selection Command
+ 1 /usr/lib/jvm/jre-1.5.0-gcj/bin/java
2 /usr/lib/jvm/jre-1.6.0-openjdk.x86_64/bin/java
* 3 /usr/java/jdk1.7.0_07/jre/bin/java

Enter to keep the current selection[+], or type selection number: 3

Now check out the current trunk:

sudo svn co /opt/openvpn-als

Adito needs the tools.jar file that is bundles with the JDK, so copy that into place. You can then go ahead and build.

sudo cp /usr/java/jdk1.7.0_07/lib/tools.jar /opt/openvpn-als/adito/lib/
cd /opt/openvpn-als
sudo ant install

This will generate a lot of output, but will eventually print something like:

[java] Starting installation wizard........................Point your browser to http://adito.chriscowley.local:28080.
[java] Press CTRL+C or use the 'Shutdown' option from the web interface to leave the installation wizard.

Go to the address it gives you and work your way through the wizard. At the end it will exit and tell you to restart the service.

You can return to your console and run

sudo ant install-agent<
sudo ant install-service
sudo /etc/init.d/adito start
sudo chkconfig adito on

You can now log into it, but it will not do much as there are no applications installed. You need to check them out of Subversion, compile and upload them. You can do this on your local machine.

svn co
cd adito-aplications

There are quite a few there, but we will just do the portable Putty application.

cd adito-application-putty-portable-ssh

The output will tell you the Zip file it has built which you can now upload. Go to the “Extension Manger” from the menu on the left. On the right you wil see “Upload Extension”. Choose the Zip file and you can configure it to connect to whatever Linux machine you want. “Putty SSH” will now be available in the list of installed applications.

Share this page:

4 Comment(s)

Add comment


From: JohnP at: 2013-01-09 20:21:10

I ran Adito as a VPN for a few years. Patching was problematic and every time the JRE was patched, Adito seemed to break. It wasn't the fault of Adito, but java seems to have a bunch of security concerns, so there will always be patches coming. After discussing the concerns with our CSO, we decided that better options exist in the solution space. Your needs are probably different than ours.

From: Stanley at: 2013-10-28 03:56:57

Hi all, I just installed the Openvpn-als with CentOS 6.4 minimal version. I have follow the above instructions to do so. I have able to create certificate through the web GUI but I can't get the admin web page and https page. Is there any problem for the installation. For the netstat command there is no such port returned. I have disable the firewall as well. What kind of logs file I can look and troubleshoot.  Please advise.  Regards/Stanley



From: Flesz at: 2014-09-10 15:01:42


 I have exactly the same problem. Installation is successful, it asks me to access the website on the https port, but there is nothing there - website cannot be displayed


From: My-Linux-Experts at: 2015-01-15 12:53:06

Hi -

I am not sure if this will help, and I know I am a little late with this, but for

Stanley - Installation is successful, it asks me to access the website on the https port, but there is nothing there - website cannot be displayed

I would check to see if SELINUX is running

# service selinux status

- if so, set the context to allow the directory to be accessed. 

an example would be:

# chcon -R --reference=/var/www/html/ /var/www/html/openvpn   I am not sure where this program sets up the webservice but I would at least check this as it could be as simple as setting the context.

If all else fails with getting SELINUX to work, you could set its permissions to permissive with:

# setenforce 0

Check the status with

# getenforce

It should return


Hope this helps