VPN Client Installation

To use the VPN

  • Make sure that you have a CruzID and that you know your Gold password. If you need help with your Gold password, contact the ITS Support Center.
  • There are different endpoints for Data Center VPN and Campus VPN:
    • for the Campus VPN, please enter or select "vpn.ucsc.edu"
    • for the Data Center VPN, please enter or select "vpn-dc.ucsc.edu"
    • for the SDSC VPN, please use "vpn-dc.sdsc.ucsc.edu"

Campus VPN Quick Start

  1. Download the VPN Client with your CruzID and Gold password.
  2. Install the VPN client. 
  3. After launching the VPN client, type "vpn.ucsc.edu" (without the quotes) into the "connect" box.
  4. Log in with your CruzID and Gold password.

Contact the ITS Support Center for assistance. 


Instructions to install the Cisco AnyConnect client for PC:

  • If your computer is managed through ITS Managed Computer Support, (TEM/Big Fix), then click on the icon (blue circle with a white b in it) on your desktop computer, and go to "offers". You will see the option to install Cisco AnyConnect Secure Mobility Client (campus and DC VPN). Once you download the Cisco AnyConnect VPN client, double click it to install. Next, click on the client icon to launch the program. Then enter 'vpn.ucsc.edu' in the connect box. You will need to enter in your CruzID and Gold password. 
  • If your computer is NOT managed through ITS Managed Computer Support, you can download the VPN client for Windows 7 or later from this link: https://www2.ucsc.edu/its/services/vpn/ You will need to access this page with your CruzID and Gold password. Once you download the Cisco AnyConnect VPN client, double click it to install. Next, click on the client icon to launch the program. Then enter 'vpn.ucsc.edu' in the connect box. Note: If you have earlier version operating system, you may not be able to use the VPN client. 
  • If you have problems installing Cisco AnyConnect VPN client: open a ITS Support Center ticket or email help@ucsc.edu. The Campus VPN service can be found under the category/keyword, "VPN"  in the IT Request ticket system and select the connection. 

Known issues:

  • Windows: If you download the Windows installer using Internet Explorer, it is automatically saved with a ".man" extension instead of ".msi" -- to resolve this issue, download the installer using Firefox or Chrome; or, if you prefer to use IE, simply rename the downloaded file to have the ".msi" extension.

Instructions to install the Cisco AnyConnect client for Mac:

  • If your computer is managed through ITS Managed Computer Support, (TEM/Big Fix), then click on the icon (blue circle with a white b in it) on your desktop computer, and go to "offers". You will see the option to install Cisco AnyConnect Secure Mobility Client (campus and DC VPN). Once you download the Cisco AnyConnect VPN client, double click it to install. Next, click on the client icon to launch the program. Then enter 'vpn.ucsc.edu' in the connect box. You will need to enter in your CruzID and Gold password. 
  • If your computer is NOT managed through ITS Managed Computer Support, you can download the VPN client for Mac OS 10.8 or later from this link: https://www2.ucsc.edu/its/services/vpn/ You will need to access this page with your CruzID and Gold password. Once you download the Cisco AnyConnect VPN Double click it to install and deselect all packages except VPN as shown below then continue and complete install. Next, click on the client icon to launch the program. 

what to change for proper install

  • Then enter 'vpn.ucsc.edu' in the connect box. Note: If you have earlier version operating system, you may not be able to use the VPN client. 
  • If you have problems installing Cisco AnyConnect VPN client: open a ITS Support Center ticket or email help@ucsc.edu. The Campus VPN service can be found under the category/keyword, "VPN"  in the IT Request ticket system and select the connection. 

Known issues:

  • Mac: If components beyond VPN are installed the following Umbrella error will appear. This happens if packages beyond VPN  are installed, these packages pose no issue and should not prevent your connection. They can be uninstalled if you prefer.  

umbrella


Instructions to install the Cisco AnyConnent client for Android devices:

For Android devices, download the Cisco AnyConnect VPN client from Google Play, and configure it as shown below. If you have any questions, please contact the Support Center.


Instructions to install the Cisco AnyConnect client for iPhone and iPad:

Requirements

  • Cisco AnyConnect VPN Client for IOS 3.0.09115 or later
  • IOS 5.0 or later
  • Campus VPN account
  • CruzID Gold credentials

The Cisco AnyConnect VPN client can be downloaded from the Apple App Store using your Apple ID. The client is free.

PLEASE NOTE: PASSWORD PROTECT YOUR IOS DEVICE IF USED TO ACCESS ANY UCSC RESOURCES

Once you have downloaded the Cisco AnyConnect VPN client from the App Store, select it to set up your connection.  When the client opens, select Add VPN Connection... under the Choose a connection section. Enter a Description (optional), and then enter the Server Address: vpn.ucsc.edu. Press Save. 

vpn image

If you have more than one VPN connection set-up, make sure you select the entry you made for the Campus VPN, and then move the AnyConnect VPN slider from OFF to ON.  For Authentication, enter your CruzID Gold credentials and select Connect.  Once you are connected, the Status will show Connected and a VPN indicator will appear in the status bar of your IOS device.

vpn image


Information for Chrome OS:

The Cisco AnyConnect VPN client can be downloaded from the Chrome Webstore. The client software is free.

PLEASE NOTE: PASSWORD PROTECT YOUR DEVICE IF USED TO ACCESS ANY UCSC RESOURCES

Once you have downloaded the Cisco AnyConnect VPN client from the Chrome Webstore, select it to set up your connection. When the client opens, select Add New Connection. Type "UCSC Campus VPN" as the Name for the connection, then enter the Server Address: vpn.ucsc.edu Press "Save Changes.

To launch the VPN client, click on Settings, then click on the "VPN" area and select "Campus VPN." If prompted, accept the certificate. Enter your CruzID and gold password.


Information for Linux OS:  

Notes:

1.Cent OS 7- Connection wont work with an NFS-mounted home directory. The connetion hangs after making the initial connection. 

2.Cent OS7- non NFS-mounted home directory, initial connection there is a 60-second or so delay during which time the client looses connectivity altogether. To fix it requires that the VPN client process be forcibly terminated from another terminal window. 

3. Only the VPN package is needed any other packages should be desellected from installer.

 

Download the Cisco AnyConnect Client for Linux

  1. Select the Linux 32-bit or Linux 64-bit client (from Cisco) at: https://www2.ucsc.edu/its/services/vpn/. Login with your CruzID and Gold password to access the page. 

Getting Started with Cisco AnyConnect for Linux

To get started you will first untar the file and then run the setup file. Note: Commands below are between brackets [ ]. When you enter them, leave off the brackets.

  1. As root, untar the gzip’d tar file [tar xzvf anyconnect-xxx]. This will create a directory called anyconnect-xxx (where ‘xxx’ equals the current version number e.g. 4.0.14143).
  2. Go to the anyconnect-xxx directory and then go to the vpn directory, and once you are there type [./vpn_install.sh]
  3. The vpn client will be installed on your system and the vpnagentd process will be started. This process will be started each time your system is booted.
  4. To start the client type [/opt/cisco/anyconnect/bin/vpnui] in a terminal window. Note: if you are not running a GUI, you can enter interactive mode by entering [/opt/cisco/anyconnect/bin/vpn]
  5. If you are using a desktop environment, you should be able to find the client in one of your menus as well, e.g., in a RHEL environment, look in Applications -> Internet.
  6. In the Connect to: box, type vpn.ucsc.edu and press Return on your keyboard. Note: in interactive mode type [connect vpn.ucsc.edu]
  7. Enter your UCSC Gold password in the appropriate boxes and click “Connect”.
  8. You should get a banner box. When you do, click “Accept” and you are now connected.

You are now ready to use your VPN connection.

Troubleshooting

If you get one of the following messages when you try to connect to the campus VPN service:

  • “Connection attempt has failed due to server certificate problem”
  • “AnyConnect cannot confirm it is connected to your secure gateway”

this means that the AnyConnect client cannot validate the certificate on the campus VPN service.

To remedy this, install the InCommon certificate files on your system, more information is available here.

Ubuntu Linux

If you are using Ubuntu Linux and are having problems using the VPN, Jeff Stern (UCI) has instructions for making the AnyConnect VPN work on Ubuntu. See http://www.socsci.uci.edu/~jstern/uci_vpn_ubuntu/ for more information. Source UCI.EDU 5/28/2016

Linux Openconnect Client

Note: Support for the Linux Openconnect software is a best effort only as technicians do not have this OS available. If you have problems using this, ITS may not be able to help you.

Some Linux distributions include a VPN client called openconnect that can be used with the the UCSC VPN service. The instructions below are for Fedora Linux. Other distributions may be similar.

Jeff Stern (UCI) has a page on setting up Openconnect for Debian/Ubuntu users at: http://www.socsci.uci.edu/~jstern/uci_vpn_ubuntu/

  1. Make sure openconnect is installed. As root type “yum install openconnect”. This will install openconnect and anything it depends on. You will need vpnc installed as well, in case installing openconnect does not install it.
  2. In a terminal window: su root (give root password) - openconnect -s /etc/vpnc/vpnc-script -u xxxxxx -v vpn.ucsc.edu
  3. (replace xxxxxx with your UCSC Gold username)

You will be prompted for your password. After you give the client your Gold password you will be logged in. You can minimize the terminal window while you do your work (don’t close it or you will lose your VPN connection). When you are done type ^C (control-c) to terminate openconnect and your VPN session will be logged out.