
Overview

Product video
This offering is locked to 5 connections. If you need the flexibility to scale, we recommend our PAYG listing instead: https://aws.amazon.com/marketplace/pp/prodview-f5qcwyw2gy256
Access Server for AWS delivers the best-of-breed VPN solution for secure remote access, site-to-site VPN and secure SaaS access for organizations of all sizes. Our award-winning open-source protocol is the industry standard for accessing private information securely, ensuring safe access to internal data and delivering zero-trust network access.
Access Server for AWS is a self-hosted VPN software that provides rapid deployment for secure remote access with a built-in web-based user interface for ease of use. Access Server provides an extra layer of security, with end-to-end encryption and granular access control to limit the risk of exposed data for remote users, site-to-site connectivity, or securing SaaS access and IoT devices. Certificate PKI management provides simplified installation and configuration. Additional features include balancing traffic across a cluster of Access Servers with DNS round robin and tunneling only your private traffic, optimizing your network bandwidth and making your environment more secure.
Access Server for AWS technical support and onboarding is available 24/7. Schedule a demo at https://hs.openvpn.net/request-demo .
OpenVPN client software accommodates Windows, macOS, Linux, Android, iOS, and ChromeOS environments. Includes a built-in local authentication system and support for authentication with Active Directory, PAM, LDAP, RADIUS, SAML, and even a custom Python3 authentication module is possible.
Our subscription model is based on the number of concurrent connected devices. The tiered instance type comes in various sizes and is locked to the specific size. The cost for the software subscription for the chosen tier is charged directly through Amazon. This means these instances get a subscription automatically at launch and are suitable for automated launch and autoscaling scenarios.
Highlights
- This offering is locked to 5 connections. If you need the flexibility to scale, we recommend our PAYG listing instead: https://aws.amazon.com/marketplace/pp/prodview-f5qcwyw2gy256
- A self-hosted scalable secure remote access, site-to-site VPN solution to give your employees the freedom to work securely with end-to-end encryption for accessing SaaS, the internet, and company resources. Essential security controls needed to evolve from a trusted-perimeter security model to an identity-based ZTNA approach.
- OpenVPN client software that accommodates Windows, macOS, Linux, Android, iOS, and ChromeOS environments. Includes a built-in local authentication system and support for authentication with Active Directory, PAM, LDAP, RADIUS, SAML, and even a custom Python3 authentication module is possible.
Details
Introducing multi-product solutions
You can now purchase comprehensive solutions tailored to use cases and industries.
Features and programs
Buyer guide

Financing for AWS Marketplace purchases
Pricing
Free trial
- ...
Dimension | Cost/hour |
|---|---|
t3.small Recommended | $0.096 |
t2.micro | $0.096 |
t3.micro | $0.096 |
d3.8xlarge | $0.096 |
c5ad.xlarge | $0.096 |
c5n.18xlarge | $0.096 |
c5a.8xlarge | $0.096 |
c6i.12xlarge | $0.096 |
r5.metal | $0.096 |
c5ad.2xlarge | $0.096 |
Vendor refund policy
Refunds are not provided, but you can cancel at any time.
Custom pricing options
How can we make this page better?
Legal
Vendor terms and conditions
Content disclaimer
Delivery details
64-bit (x86) Amazon Machine Image (AMI)
Amazon Machine Image (AMI)
An AMI is a virtual image that provides the information required to launch an instance. Amazon EC2 (Elastic Compute Cloud) instances are virtual servers on which you can run your applications and workloads, offering varying combinations of CPU, memory, storage, and networking resources. You can launch as many instances from as many different AMIs as you need.
Version release notes
Additional details
Usage instructions
For instructions on using the OpenVPN Access Server appliance on the AWS Marketplace, please visit https://openvpn.net/as-docs/aws-tiered.html
Resources
Vendor resources
Support
Vendor support
For product activation to succeed your firewall and/or security group settings must allow connections to our online activation servers - details can be found in our FAQ section here: https://openvpn.net/aws-frequently-asked-questions/ . If you experience any problems, you can register for a free account on our website here: https://openvpn.net/support-for-aws/ and then open a support ticket so our technical team can assist you.
AWS infrastructure support
AWS Support is a one-on-one, fast-response support channel that is staffed 24x7x365 with experienced and technical support engineers. The service helps customers of all sizes and technical abilities to successfully utilize the products and features provided by Amazon Web Services.
Standard contract
Customer reviews
Secure access control has protected client platforms and supports reliable SLA commitments
What is our primary use case?
OpenVPN Access Server is our main solution to ensure that the VPN is properly connected at the client's location so that they are able to access our system, as we have a platform for inventory invoice management.
Just as there are typical firewalls in a system, such as Cloudflare 1.1.1.1, I use OpenVPN Access Server to allow access from specific IPs and block access to specific IPs in my invoice management platform.
How has it helped my organization?
OpenVPN Access Server has positively impacted my organization by helping us design a reliable infrastructure and even providing definite SLA metrics to our clients.
We have different SLA levels such as L0, L1, L2, and L3 in a typical IT scenario. Some clients need immediate access within 24 hours, while other clients, depending on their SLA levels, need support within one to two days. There are also some clients who are low priority and need support within five days or a week. This is how we organize our SLA structure. The high-priority clients who are hosted on our private server need immediate resolution, or a penalty is applied.
What is most valuable?
The best features OpenVPN Access Server offers are the secure access to the portal and the ability to stop irrelevant IPs from accessing our system.
The secure access feature and blocking irrelevant IPs help my team on a day-to-day basis by protecting us. The unnecessary load on the servers is avoided in the first place. The regular backups that are taken are also easily available for our clients. Even the support team feels updated with all such features.
What needs improvement?
OpenVPN Access Server needs improvement as it requires definite marketing in the East Africa region so that many people have access to it. It should also be available offline and not always dependent on the internet. It should have AI-based observability metrics as well.
From the user experience perspective, OpenVPN Access Server should be more user-friendly in the East Africa market where I am located. It should be easy to use and compliant with local norms. From the technical perspective, it should not be heavily dependent on the resources of the PC.
For how long have I used the solution?
I have been using OpenVPN Access Server for the past three years.
How are customer service and support?
Others who are looking to use OpenVPN Access Server should evaluate the proper feature benefits and costing as per their use cases.
What other advice do I have?
From the user experience perspective, OpenVPN Access Server should be more user-friendly in the East Africa market where I am located. It should be easy to use and compliant with local norms. From the technical perspective, it should not be heavily dependent on the resources of the PC.
I found this interview to be good, but it can be improved with a more manual touch. My overall review rating for this product is 9 out of 10.
Flexible, Easy, and Secure Access to Windows Desktops and Apps
Secure remote access has streamlined our hybrid cloud workflows and reduced onboarding effort
What is our primary use case?
I use OpenVPN Access Server as a VPN to access many of the applications. For example, I access a DataDog website where I monitor many tools and all, using OpenVPN Access Server .
I have been using OpenVPN Access Server for about 12 to 13 months, and our main use is managing secure remote access for our internal teams and technical engineers who need to connect to our private cloud infrastructure and staging environments. We rely heavily on it to establish stable, secure connections so the team can access databases, internal applications, and server dashboards safely from anywhere.
We use a hybrid cloud setup for our deployment of OpenVPN Access Server, which is hosted on virtual machines within our private cloud infrastructure to securely gatekeep our internal applications, main databases, and core staging environments.
For public cloud resources in our hybrid setup, we primarily use AWS and Microsoft Azure to host several of our front-facing applications, customer portals, and some record testing environments. Having OpenVPN Access Server tied into this mix is great because it allows our team to securely hop between our internal private network and these public cloud resources without needing multiple different VPN clients or configuration setups.
What is most valuable?
OpenVPN Access Server offers a secure remote access VPN, web-based administration console, multi-factor authentication MFA support, integration with LDAP, Active Directory, RADIUS, SAML, centralized user and device management, client software for Windows, macOS and Linux OS, Android and iOS.
The admin web UI is easily at the top of the list of best features, making managing user access and subnets incredibly simple without having to mess around with a command line. Another standout is the built-in client portal that lets users log in and download their own pre-configured profiles, saving the IT team a ton of manual setup. Additionally, it has a multi-factor authentication code that flexibly integrates with Active Directory and provides the enterprise-grade security we need.
Overall, OpenVPN Access Server has positively impacted our organization by giving us a highly reliable, stable environment for remote work. We handle critical infrastructure and having a secure gateway that doesn't drop connections unexpectedly is a huge win. It has greatly improved our security posture without adding administrative headaches because our engineers and technical teams can securely connect to private cloud resources and databases from anywhere without a hitch, ensuring our support and operational workload runs smoothly around the clock.
What needs improvement?
The main area for improvement is the pricing model, as the concurrent user license gets expensive quickly as our organization grows. More flexible or tiered pricing options would be a huge plus. Another area is the configuration disconnect, where while the admin web UI handles about 90% of what we need, the moment we need deep advanced routing customizations or to tweak specific variables, we still have to drop back into the command-line interface to make those changes. It would be great to see these deeper configurations fully integrated into the web portal. Additionally, native support for newer, lighter protocols like WireGuard built straight into the platform alongside standard OpenVPN for better performance efficiency would be beneficial.
For how long have I used the solution?
I have been working in my current field for almost 15 to 15 plus years.
What do I think about the stability of the solution?
OpenVPN Access Server is very stable, and we have a hassle-free work experience using it.
What do I think about the scalability of the solution?
OpenVPN Access Server's scalability is much better, ensuring we can handle our growing needs.
How are customer service and support?
For customer support, I rate OpenVPN Access Server 9 out of 10. The ticketing system is responsive, and the technical team knows the product inside and out. Additionally, with such a massive community, we can almost always find immediate answers in their forum or documentation without needing to open a ticket. My advice is to map out your user access groups and routing subnets before configuring the server; this makes it easier to enforce least privilege.
Which solution did I use previously and why did I switch?
We previously relied on a legacy IPsec VPN solution and the standard open-source community edition of OpenVPN. We switched due to the administrative bottleneck, as managing the open-source version required our team to handle everything through the command-line interface, creating individual user configuration files to track down connection failures. It did not have a centralized dashboard or a user portal, which resulted in a massive number of internal support tickets. Moving to OpenVPN Access Server solved all of that by providing the web admin portal and seamless SAML integration, completely automating user management and relieving our administrators.
What was our ROI?
Regarding the return on investment from OpenVPN Access Server, it really comes down to the drastic drop in onboarding and engineering time. Before we implemented it, our senior technical staff had to spend 20 to 30 minutes per user manually generating cryptographic keys, setting up routing rules, and securely transferring profile files to each employee. This was a significant drain on highly skilled personnel, but now with our SAML identity provider integration, the entire workflow takes under two minutes. The platform automatically reads the user role and maps them to the correct network subnets instantly, saving us countless hours of administration overhead every month, allowing our engineering team to focus on managing critical infrastructure rather than grinding through access tickets. For us, that efficiency completely justifies our licensing cost.
What's my experience with pricing, setup cost, and licensing?
The pricing for OpenVPN Access Server is fine and very straightforward, and we did not face any hassles accessing it. The pricing, setup cost, and licensing were within our limits and budget, making it very user-friendly.
Which other solutions did I evaluate?
Before choosing OpenVPN Access Server, we evaluated other options, looking closely at WireGuard and Cisco AnyConnect. Cisco AnyConnect was a strong enterprise contender, but it felt overly complex for our hybrid cloud needs and required locking into their ecosystem, which we wanted to avoid. We valued WireGuard for its raw connection speed and lightweight protocol, but it lacked the necessary enterprise features including a built-in administrative web portal, straightforward SAML integration, and robust access control list. Ultimately, OpenVPN Access Server won out because it offered the ease of management and advanced user governance features we needed.
What other advice do I have?
If I had to give advice to others looking into using OpenVPN Access Server, my biggest recommendation is to carefully map out your user access groups and routing subnets on paper before diving into the configuration. The platform makes it incredibly easy to enforce least privilege and zero-trust principles, but the setup goes smoother if you have a clear architecture of who needs to access what private resources. Utilize the two free concurrent connections to test your identity provider integration, enforce multi-factor authentication, and provide the automation workflow during the testing phase to illustrate how much administrative time you will save, making it easier to justify the licensing cost when scaling up. I rate my overall experience with OpenVPN Access Server an 8 out of 10.
Which deployment model are you using for this solution?
If public cloud, private cloud, or hybrid cloud, which cloud provider do you use?
Secure remote access has simplified user management and reduced support workload
What is our primary use case?
My main use case for OpenVPN Access Server involves managing secure remote access for our internal teams and technical engineers who need to connect to our private cloud infrastructure. We rely heavily on established secure connections so the team can certainly access the database, internal applications, server dashboards, and the web admin UI makes it straightforward to manage user cases and integrates well with our existing authentication setup, which gives us significant time savings on the IT support side.
A quick specific example of how my team uses OpenVPN Access Server day to day includes the admin web UI being at the top of the list because it makes managing user access and subnets incredibly simple without having to use the command line. Another standout feature is the built-in client portal that allows users to log in and download their configured profile, saving our IT team considerable manual setup work. Lastly, the authentication flexibility helps us regularly, specifically how smoothly it integrates with our Active Directory and multifactor authentication, which enhances our IT support experience on a daily basis.
How has it helped my organization?
OpenVPN Access Server has positively impacted our organization by providing a high, reliable, stable environment, especially for remote work. We handle critical infrastructure, and having a secure gateway that does not drop connections unexpectedly is a huge win, greatly improving our security posture without adding administrative headaches, as engineers and technical teams can securely connect to private cloud resources and databases from anywhere without a hitch, ensuring that our operations workflow runs smoothly around the clock and offering total peace of mind regarding remote access security.
Regarding specific outcomes, the clear impact of OpenVPN Access Server has been a massive drop in VPN-related support tickets. We previously handled profile issues, broken connections, and credential setups manually which used to be a daily headache for the IT team. Those tickets have now dropped by seventy percent to eighty percent, roughly because of the self-service client portal. It saves significant time on user onboarding as it used to take administration about twenty to thirty minutes to generate and securely send configuration files, but now, thanks to Active Directory integration, it takes hardly two to three minutes, resulting in considerable hours saved weekly and monthly.
What is most valuable?
The main feature of OpenVPN Access Server that stands out to me is the admin UI, and it is very well integrated with the Active Directory multifactor authentication, which provides the kind of enterprise-grade security we have been looking for, and we are very happy with that.
The admin web UI makes managing user access and subnets incredibly simple without having to use the command line. Another standout feature is the built-in client portal that allows users to log in and download their configured profile, saving our IT team considerable manual setup work. The authentication flexibility helps us regularly, specifically how smoothly it integrates with our Active Directory and multifactor authentication.
What needs improvement?
The main area for OpenVPN Access Server improvement is its pricing model, as the concurrent user license gets expensive quickly as the organization grows, so more flexible pricing options would be a huge plus for AVIARC. Another area I would specify is the configuration disconnect, as the admin UI handles about ninety percent of what you need, but when it comes to advanced routing customization, tweaking specific variables requires dropping back into the command line interface. It would be great to see those deeper configurations integrated into the web portal for ease of use, along with support for newer, lighter protocols like WireGuard built straight into the platform for better performance and efficiency.
For how long have I used the solution?
I have been using OpenVPN Access Server for about three and a half to four years.
What do I think about the stability of the solution?
OpenVPN Access Server demonstrates absolute stability with no issues regarding its reliability, scalability, or other concerns.
What do I think about the scalability of the solution?
OpenVPN Access Server scales very well from a technical standpoint. You can easily upgrade the underlying hardware resources or spin up additional nodes in a cluster configuration to handle a massive surge in concurrent users. The only real constraint to its scalability is financial, as the concurrent user licensing model leads to expenses increasing quickly as you scale up to support larger teams, meaning while the software handles growth seamlessly, your budget is the main thing you need to plan around.
How are customer service and support?
I would rate customer support nine out of ten. The ticketing system is responsive, and the technical team knows the product inside and out. Moreover, due to the massive community around VPNs, you can almost always find immediate answers in their forum documentation without needing to open a ticket.
How was the initial setup?
Installing and setting up OpenVPN Access Server is very easy, especially compared to the community edition of OpenVPN. In our environment, we deployed it without a manual script or built-in installation from scratch, simply pulling a pre-configured image directly onto our virtual machine. The initial setup wizard guided us through core settings like admin password configuration and a primary network interface through the terminal, from where we immediately transitioned to the web UI to handle the rest of the configuration, which included setting up routing paths and subnets. It took less than an hour for the fully functional server to be up, which is a massive time-saver for our engineering team.
What other advice do I have?
My advice to others looking into using OpenVPN Access Server is to map out your user access groups and routing subnets before configuring the server, as the tool makes enforcing least privilege incredibly easy, but it is smoother with clearly defined access policies on paper first. I would also recommend taking full advantage of the two free concurrent connections to test out the SAML or Active Directory integrations completely before purchasing licenses, allowing you to prove the workflow and see how much time it can save your IT team before making a financial commitment. I would rate this product an eight out of ten overall.