Introduction to Web VPN services
Shared by: kmb15358
1.0 Introduction to Web VPN services 2.0 Prerequisites 3.0 Workstation Requirements 4.0 Instructions to make the VPN connection 4.1 Logging into the Web VPN Login Page 4.2 Accepting the SSL Certificate 4.3 Exporting the SSL Certificate for future VPN sessions 4.4 Importing the SSL Certificate for future VPN sessions 5.0 Instructions to start the Remote Desktop Connection 6.0 Instructions to log into the City’s Network 7.0 Instructions to log out of the City’s Network and close Remote Desktop Connection 8.0 Instructions to disconnect from the VPN 9.0 Access to resources allowed 9.1 Files 9.2 Applications 10.0 Reporting problems 1.0 Introduction to Web VPN services The City of South Bend has implemented a Virtual Private Network (VPN) technology that allows remote users to gain access to City’s Network resources over the Internet by creating a secure, encrypted tunnel. Once a VPN connection has been established, users will access the City’s private network using a Terminal Services Server. This server has been configured with the most common applications used on the City’s network, i.e. GroupWise, Microsoft Office, AS/400 (all applications will not be available). Requests for additional applications to be installed on the Terminal Services Server will be considered based on complexity of installation, licensing requirements, performance overhead on the server, and the benefit of the application to be installed on the server). 2.0 Prerequisites • Users wanting to take advantage of this technology must contact Information Technologies in advance to be issued a VPN user ID and password • Department Head approval will also be required 3.0 Workstation Requirements • Workstation must be connected to the internet • Microsoft Windows 2000, Windows XP, or Windows Vista • Single user logged into workstation (if Fast User Switching is enabled on workstation, all other users must be logged out) • Remote Desktop Connection installed on the workstation (installed by default with Windows XP or later) • SSL capable Web Browser (Internet Explorer 6 or later is recommended) • If the computer you are using does not meet these requirements, the City’s VPN service will not be available to you. 4.0 Instructions to make the VPN connection 4.1 Logging into the Web VPN Login Page • Users can locate the Web VPN Login Page in one of 2 methods. Type https://184.108.40.206 in a SSL compliant web browser. • Open the City of South Bend’s website at www.southbendin.gov. Highlight the Online Services tab and click City Employees. In the menu on the left side of the page, click Web VPN. • You may see the following screen if using Internet Explorer 7. Select Continue to this website • Using your VPN User ID and password (provided by Information Technologies) log into the Web VPN 4.2 Accepting the SSL Certificate • Select Yes to view the Certificate • If connecting only once select OK. If you will be using this computer frequently to connect to the Web VPN, you can export and import this certificate into your web browser. This will allow you to skip the viewing and accepting of the certificate. • Select Yes to accept the certificate • You can verify you are connected to the Web VPN by checking the Notification Tray for the Cisco SSL VPN Client icon • Once you are done with the session, right-click the icon and select Disconnect 4.3 Exporting the SSL Certificate for future VPN sessions • This is an optional step that will allow you to access the Web VPN without having to view and accept the certificate each time you make the Web VPN connection. • After logging into the Web VPN and clicking Yes to view the Certificate, click the Detail tab of the Certificate • Click Copy to File – this starts the Certificate Export Wizard, select Next • Select the format you want to use. DER encoded binary X.509 (.CER) should be selected. Click Next • Type a name and known location for the certificate. Click Next • On the Completing the Certificate Export Wizard, click Next • If you have successfully created the certificate file, you will receive the following box: 4.4 Importing the SSL Certificate for future VPN sessions • Once you have created the Certificate, you will need to import the file into your web browser. • Open Internet Explorer > select Tools > select Internet Options > select the Content tab • On the Content tab, select Certificates • On the Certificates page, click Import • This starts the Certificate Import Wizard, click Next • Specify the file you want to import (this is the file that was created in the previous step) • Select “Automatically select the certificate store based on the type of certificate • On the Completing the Certificate Import Wizard, click Next • Select Yes to install the certificate • If you have successfully installed the certificate file, you will receive the following box: 5.0 Instructions to start the Remote Desktop Connection After successfully making the VPN tunnel connection, click Start > All Programs > Accessories > Communications > Remote Desktop Connection For the computer name type: VPN 6.0 Instructions to log into the City’s Network To login to the City’s network, you must select your department from the drop down menu on the top of the Novell Login box. In most cases your Novell User ID is your first initial and the first 7 letters of your last name. Example: The user name for John Thompson would be JTHOMPSO Contact Information Technologies at 245-6000 during normal business hours (8:00-4:45 M-F) if you need assistance determining your User ID. 7.0 Instructions to log out of the City’s Network and close Remote Desktop Connection Once you have completed your work, click Start Log off (notice you will not have the option of restarting or shutting down the computer). This will disconnect your Remote Desktop Connection into the VPN server. You will still be connected to the City’s network until you disconnect your session. 8.0 Instructions to disconnect from the VPN Right-click the SSL VPN connection symbol in the Notification Tray, select Disconnect. 9.0 Access to resources allowed 9.1 Files Once you have logged into the VPN and made the Remote Desktop Connection to the VPN Terminal Service Server, you will have access to all of the files that are located on the network (If you have saved files to the hard drive of your assigned workstation, these files will not be available.) Using Windows Explorer you will have the same F: and H: drive that you have on your office workstation. 9.2 Applications List of applications that are currently installed on the VPN Terminal Services Server: Internet Explorer (You will have the same access as Adobe Reader 7.07 you do from your office workstation) Arc Reader 9.2 Microsoft Office 2003 Professional Suite Arc GIS 9.2 SBEND Employee Intranet H.T.E. (Naviline) Word Perfect 9 (for Legal Department Only) NOTE: Requests for additional applications to be installed on the Terminal Services Server will be considered based on complexity of installation, licensing requirements, performance overhead on the server, and the benefit of the application to be installed on the server. 10.0 Reporting problems Contact Information Technolgies @ 245-6000 during normal business hours (8:00-4:45 M-F). When reporting problems with the City’s VPN system, it is best to include as much information about the problem as possible. Please be sure to include the following in all problem reports. At no time should you volunteer your password to anyone. 1. Your name, daytime and evening phone numbers and email address. 2. Operating System of the computer you are using. 3. Version of Web Browser you are using. 4. A brief, specific description of the nature of the problem, include all error messages. 5. Some indication as to when problems first began. Indicate if you have successfully connected in the past, did anything change?