Connecting to the Off-Campus VPN

Connecting to the VPN allows access to on-campus network resources that are otherwise not available from off-campus. VPN access is provided upon request to faculty and staff.  Access can be requested via Security Request System under Work @UNI tab in myuniverse portal.  The system is VPN, there are roles for off campus access (External) and on campus access (Internal).  The VPN_External_UNI is most common, others are for access to specific systems. Unless specified otherwise in special circumstances, the VPN will be a split-tunnel, where traffic destined to UNI travels over the VPN but traffic to other destinations (including Google for Gmail, Google Drive, etc.) will travel over your normal internet connection. A full-tunnel VPN that routes all internet traffic back through UNI can be provided for appropriate business cases, such as some international travel.

Note: IT may provide different groups or addresses to use in special circumstances. Please substitute those if provided. These instructions will vary slightly depending on your operating system, choice of browser, and the plugins installed on your system. The instructions below provide the steps that will be needed on most systems. You must be connected to a network with access to install the VPN software prior to using it. If you need additional assistance, contact the Service Desk at (319) 273-5555 or visit https://servicehub.uni.edu.

 

Installing the VPN client on Windows

Installing the VPN client on Mac

Connecting to the VPN using the Web Interface

Connecting to the VPN using the Windows Application

Connecting to the VPN using the Mac Application

Connecting to the External VPN

Uninstalling the Cisco VPN client in Windows

 

 

 

Installing the VPN Client on Windows

  1. Visit https://sslvpn.uni.edu in the browser of your choice (Internet Explorer, Firefox, Google Chrome.)

  2. Make sure the “Group” drop down box has “General” selected.

  3. Enter your CatID username and password.
    Log-in Window Image

  4. Click “Login”

  5. If you are not in the IT department, please skip to step 6. If you are enrolled in Duo for multi-factor authentication, the Duo application will appear. Use your desired method to authenticate. If available, “Push” is the recommended action. Those not enrolled in Duo will skip to the next step automatically.
    Duo Push window

    1. If you choose push, the push request will appear on your smart phone. Tap “Approve.”
      Duo Approval Window

    2. If you choose “Call Me,” Duo will call your phone and provide instructions to approve the request.

    3. If you choose “Enter as Passcode,” you may type a Duo passcode from any of the following: the Duo App installed on your smart phone or tablet, the next SMS code to use, or the code provided on a hardware token that you have been given.

  6. The VPN webpage will attempt to use ActiveX or Java to assist in the client install. You may have success following the on-screen directions, otherwise click the “Download” button to go to a page for “Manual Installation.”
    Cisco AnyConnect Window

  7. Click the “Windows Desktop” link to download the VPN software to your computer. The filename will begin with “anyconnect.”
    Cisco AnyConnect Manual Installation Window

  8. Run the file download in step 7.

  9. Follow the on-screen prompts to install the Cisco AnyConnect Secure Mobility Client. Approve and/or log into any User Account Control prompts that may appear.

  10. When the install is complete, click “Finish” in the Cisco AnyConnect Secure Mobility Client setup window. You may be prompted to restart your computer. Please do so if requested.

 

Installing the VPN Client on Mac

  1. Visit https://sslvpn.uni.edu in the browser of your choice (Safari, Firefox, Google Chrome.)

  2. Make sure the “Group” drop down box has “General” selected.

  3. Enter your CatID username and password.
    Log-in Window

  4. Click “Login”

  5. If you are not in the IT department, please skip to step 6. If you are enrolled in Duo for multi-factor authentication, the Duo application will appear. Use your desired method to authenticate. If available, “Push” is the recommended action. Those not enrolled in Duo will skip to the next step automatically.
    Duo Push Screen

    1. If you choose push, the push request will appear on your smart phone. Tap “Approve.”
      Duo Approval Screen

    2. If you choose “Call Me,” Duo will call your phone and provide instructions to approve the request.

    3. If you choose “Enter as Passcode,” you may type a Duo passcode from any of the following: the Duo App installed on your smart phone or tablet, the next SMS code to use, or the code provided on a hardware token that you have been given.

  6. The VPN webpage will attempt to use Java to assist in the client install. You may have success following the on-screen directions, otherwise click the “Download” button to go to a page for “Manual Installation.” Then click the “Mac OS X 10.8+ (Intel)” link to download the VPN software to your computer. The filename will begin with “anyconnect” and will be a disk image (DMG) file.
    Cisco AnyConnect Mac Client

  7. Double-click the AnyConnect DMG file downloaded in step 6.

  8. Double-click the “vpn.pkg” file to install the AnyConnect VPN client software.
    AnyConnect VPN Package

  9. Follow the on-screen prompts to install the Cisco AnyConnect Secure Mobility Client. Approve and/or log into any Administrative prompts that may appear.

  10. When the install is complete, click “Close” in the Cisco AnyConnect Secure Mobility Client setup window.

  11. If desired, you may drag the AnyConnect VPN disk mount on the desktop to the trash to dismount it.

 

Web Interface (Windows & Mac): Connecting to the VPN

  1. Visit https://sslvpn.uni.edu in the browser of your choice (Internet Explorer, Firefox, Google Chrome.)

  2. Make sure the “Group” drop down box has “General” selected.

  3. Enter your CatID username and password.
    Log-in Window

  4. Click “Login”

  5. If you are not in the IT department, please skip to step 6. If you are enrolled in Duo for multi-factor authentication, the Duo application will appear. Use your desired method to authenticate. If available, “Push” is the recommended action. Those not enrolled in Duo will skip to the next step automatically.
    Duo Push Screen

  6. The VPN webpage will attempt to use ActiveX or Java to have the AnyConnect client connect to the VPN. You will need to install the plugins as prompted. If you have concerns regarding this process, please instead use the instructions found in the section “Connecting to the VPN via Application Interface.”

  7. The AnyConnect client will connect to the VPN.

  8. If there is a period of inactivity, the VPN will automatically disconnect.

  9. When you wish to disconnect, open the client again and click “Disconnect.”
    Cisco Screen

 

Connecting to the VPN using the Windows Application

  1. Launch the “Cisco AnyConnect Secure Mobility Client” via the start menu.

  2. Enter “sslvpn.uni.edu” into the box and click “Connect.”
    Cisco Screen

  3. Enter your CatID username and password into the username and password boxes. If the profile you are using is not setup for Multifactor authentication, you will not see "second password". You may skip to step 4.
    Cisco Log-in Screen

    1. If you are not yet enrolled in Duo for multi-factor authentication, simply type “Push” or anything else into the “Second Password” box, but do not leave the box blank. Click “OK.”

    2. If you are enrolled in Duo for multi-factor authentication, you may type three things into the “Second Password” box:

      1. “Push” will send the authentication request to your smart phone (this requires the Duo app already be installed and configured.) Tap “Approve” to approve the authentication.
        Duo Confirmation Screen

      2. “SMS” will send your cell phone (if enrolled) new Duo passcodes via SMS. Click “OK.” The log in will fail, but you will still receive the codes to use on the next log in attempt.

      3. Type a Duo passcode from any of the following: the Duo App installed on your smart phone or tablet, the next SMS code to use, or the code provided on a hardware token that you have been given. Click “OK.”

  4. The AnyConnect client will connect to the VPN.

  5. If there is a period of inactivity, the VPN will automatically disconnect.

  6. When you wish to disconnect, open the client again and click “Disconnect.”
    Cisco Screen

 

Connecting to the VPN using the Mac Application

  1. Launch the “Cisco AnyConnect Secure Mobility Client” via Spotlight or by launching it from the Applications folder.

  2. Enter “sslvpn.uni.edu” into the box and click “Connect.”
    Cisco Screen

  3. Enter your CatID username and password into the username and password boxes. If the profile you are using is not setup for Multifactor authentication, you will not see "second password". You may skip to step 4.​
    Log-in Screen

    1. If you are not yet enrolled in Duo for multi-factor authentication, simply type “Push” or anything else into the “Second Password” box, but do not leave the box blank. Click “OK.”

    2. If you are enrolled in Duo for multi-factor authentication, you may type three things into the “Second Password” box:

      1.  “Push” will send the authentication request to your smart phone (this requires the Duo app already be installed and configured.) Tap “Approve” to approve the authentication.
        Duo Approval Screen

      2. “SMS” will send your cell phone (if enrolled) new Duo passcodes via SMS. Click “OK.” The log in will fail, but you will still receive the codes to use on the next log in attempt.

      3. Type a Duo passcode from any of the following: the Duo App installed on your smart phone or tablet, the next SMS code to use, or the code provided on a hardware token that you have been given. Click “OK.”

  4. The AnyConnect client will connect to the VPN.

  5. If there is a period of inactivity, the VPN will automatically disconnect.

  6. When you wish to disconnect, open the client again and click “Disconnect.”
    Cisco Screen

 

Connecting to the External VPN

  1. Open the Start Menu at the bottom left of your screen. Search for “Cisco” or scroll until you find “Cisco AnyConnect Secure Mobility Client” in the program list. Open the program.
    1. If you don’t see this program installed, proceed to the section titled “Installing the Cisco VPN client"
      Cisco VPN client

  2. In this window, type “sslvpn.uni.edu” into the text box. Click “Connect”.
    Connect

  3. Make the following changes to this window:

    Group: For most people the group should be “General”. If you need a different profile choose that instead. **

    Username: Enter your CatID

    Password: Enter your CatID passphrase.
    Enter your CatID

    ** Note that you need to have a VPN role approved in SRS before you will have access to any VPN.  

  4. Click “OK”. If you entered your information correctly you will be connected to the VPN.
    Connected

  5. To disconnect, open Cisco AnyConnect the same way you did in step 1. Click “Disconnect”.
    Disconnect

 

Uninstalling the Cisco VPN Client in Windows

  1. We will install Cisco AnyConnect through the program Software Center. Open the Start Menu and find the folder for “Microsoft System Center”. Open that colder and click on “Software Center”.
    Uninstall
  2. Cisco AnyConnect should appear in the list of available programs. Look for the program with this icon and click on it.
    1. If you don’t see Cisco AnyConnect in this list, create an Incident on https://servicehub.uni.edu and request that it be added.
      Microsoft Software Center
  3. Click the blue “Install” button. Cisco AnyConnect will install in a couple minutes.

  4. After Cisco AnyConnect is installed, the button will change to say “Uninstall”.

 

 

Staff

Aaron Howard - Network Architect & Manager, Network & Infrastructure Services
Ryan Dupuy - Network Engineer, Network & Infrastructure Services
Shane Folkerts - Network Engineer, Network & Infrastructure Services
  • ITTC 36
  • (319) 273-5555
  • Service Hub