Is Administrator access required to install the Cisco AnyConnect VPN client?

Administrator access to your PC or laptop is required to download and install the Cisco AnyConnect VPN Client. Administrator access is not required if your computer is managed through ITS Managed Computer Support and you are installing the client through the TEM/BigFix offer.

What is the difference between Campus VPN and Data Center VPN?

Campus VPN provides access to shared/network drives Data Center VPN provides access to systems or databases in the Data Center (for administrators, developers and report writers).

What happens if I receive Error: "The VPN client driver has encountered an error"?

This is an error message on the client machine when trying to connect to the VPN. Solution: For PC users, complete this procedure to manually set the AnyConnect VPN agent to Interactive:

  • Right click on My Computer > Manage > Services and Applications >Services > Select the Cisco AnyConnect VPN Agent.
  • Right click Properties, then log on and select Allow service to interact with the desktop.
  • Restart your computer: This sets the registry Type value DWORD to 110 (default is 010) for the HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\vpnagent

I am a Safari user, how do I enable the plug-in?

Safari users may have to enable plug-ins in order to successfully download the Cisco AnyConnect client. The "enable plug-in" option can be found on the Security tab under Preferences. Once the box is checked to enable plug-ins”, try downloading the AnyConnect client again. If successful, the "enable plug-in" box can be unchecked again.

What is the current Operating System support for Cisco AnyConnect?

  • Windows 7, 8, 10 (32 and 64 bit)
  • Linux Red Hat 6 and 7
  • Ubuntu 12.04 (LTS), 14.04 (LTS), and 16.04 (LTS) (64-bit only)
  • Mac OS X 10.9 and greater

When I engage the VPN, I can no longer print on my local network.

There is a setting under AnyConnect Preferences that can resolve this issue:

  • Start Cisco Anyconnect VPN.
  • From the menu select: Cisco Anyconnect VPN Client > Preferences
  • Check the box next to Enable Local LAN access (if configured)
  • Your settings changes will not take effect until the next time you start the VPN client.
  • To test the new settings, quit the VPN client, restart it, and connect again to the VPN.
  • If that does not work for you, then disconnect from the VPN when you need to print.

Are there downsides to using VPN, when it is not needed?

Yes, there are some downsides to using the VPN when it is not needed, and for these reasons we recommend disconnecting from the VPN if you do not need to use it:
  • VPN encryption may slow down your connection
  • You are using VPN resources that others could be using
  • VPN is an additional step when connecting to UCSC resources that don't require it
  • Web browsers or Internet-based apps may need to be restarted after launching or closing the VPN client

Are Campus VPN and Data Center VPN Full Tunnel?

The Campus VPN and the Data Center VPN are all Full Tunnel.

The "full tunnel" sends all your traffic through the VPN connection, and then out to the Internet through UCSC's connection.

What are the VPN address ranges?

If you would like to allow or restrict access from VPN users, here are the address ranges that VPN users will be assigned(Restricted to campus users)

How can I find additional information on Policy and Security?

UCSC policies and procedures related to protecting sensitive information are strictly adhered to for all servers in the ITS Data Center. Sensitive data includes:

  • Personally Identifiable Information (PII)
  • Electronic Protected Health Information (ePHI & HIPAA)
  • Student Records Protected by FERPA (The Federal Family Educational Rights and Privacy Act of 1974)
  • Credit Card Data

Please see https://its.ucsc.edu/security/p3-p4.html for detailed information on Practices for Protecting Electronic P3-P4 Data.

Anti-Virus Protection – All servers are required to have updated patched Operating systems with an anti-virus protection such as McAfee. For managed servers, the Core Tech Systems Administration group will ensure that the OS is patched, updated and has antivirus software installed.

Related Policies

Acceptable Use Policy

UCSC Password Strength & Security Standards

UC Minimum Security Standard

Electronic Communications Policy (ECP)

Remote Access Requirements