VPN

A virtual private network (VPN) allows you to join a private network using an existing public network by creating an encrypted tunnel between two hosts.

Establishing a VPN connection creates a secure tunnel between your off-campus computer or mobile device and the PNW network, allowing you to access services and resources that are configured to only allow access to devices on the PNW network.

When to Connect

You do not need to connect to the VPN to access the majority of PNW resources remotely.  You should always attempt to connect and use the resources that you need without the VPN first, and then only connect if you are unable to work without connecting.  This frees up space in the VPN for those that require it.

The following resources will require a VPN connection to access from off-campus (this list is not comprehensive):

You do not need a VPN connection to access these common resources (this list is not comprehensive):

  • E-Mail
  • Office Applications
  • MyPNW Portal
  • Brightspace
  • Blackboard
  • Success Factors
  • R: and H: Drives
  • Google Drive
  • Ariba
  • Concur
  • Zoom
  • WebEx

How to Connect

There are two VPN “pools” at PNW: vpn.pnw.edu and vpn2.pnw.edu.  Each pool has a limited number of connection spots available.  We recommend connecting to vpn.pnw.edu first and if you are unable to connect, try vpn2.pnw.edu.  Instructions for creating connections to both are below.

 

Download the Check Point Endpoint Security client:

VPN Client for Windows Users

VPN Client for Mac Users

  • Open the Check Point Endpoint Security client.
    • If it is already running, right-click on the lock icon in the system tray or notification area.
    • Click on “Connect to…”
  • Click on “Yes” when it asked “Would you like to configure a new site?”
  • In the Site Wizard, click “Next.”
  • Type “vpn.pnw.edu” or “vpn2.pnw.edu” in the “Server address or Name:” box.
  • Click “Next” at the bottom of the panel.
  • Click on “Next” again.
  • Click “Finish” at the bottom of the panel.
  • Click on “Yes” when it asks “Would you like to connect?”
  • Enter your PNW username in the “Username:” box.
  • Enter your PNW Boilerkey in the “Password:” box.
  • Click “Connect” at the bottom of the pane.
  • Click “Show hidden icons.”
  • Hover over CheckPoint VPN – lock icon. This will show if the system is connected to the VPN.
  • Open the Check Point Endpoint Security client.
  • Once it is running, right-click on the lock icon in the system tray or notification area.
  • Click on “Connect to…”
    • Note: If your VPN client is already connected to a VPN server, or is attempting to connect, you first need to choose “Disconnect.”
  • On the top of client screen, click on the current server address dropdown menu next to Site: and select [New Site].
  • In the Site Wizard, click “Next.”
  • Type the name of the second server to add in the “Server address or Name:” box. (vpn.pnw.edu or vpn2.pnw.edu)
  • Click “Next” at the bottom of the panel.
  • Click on “Next” again.
  • Click “Finish” at the bottom of the panel.
  • Click on “Yes” when it asks “Would you like to connect?”
  • Enter your PNW username in the “Username:” box.
  • Enter your PNW Boilerkey in the “Password:” box.
  • Click “Connect” at the bottom of the pane.
  • Click “Show hidden icons.”
  • Hover over CheckPoint VPN – lock icon. This will show if the system is connected to the VPN.

CheckPoint Capsule VPN Client can be downloaded from the Google Play store.  This application will allow you to make a VPN connection from a Chromebook.

  1. Download the CheckPoint Capsule application from the Google Play store.
  2. Name the VPN connection something you will remember (ex: PNW VPN).
  3. Select “Username Password” as the authentication method to be used.
  4. Enter the server address: vpn.pnw.edu or vpn2.pnw.edu.
  5. Enter your PNW username (without @pnw.edu) and your BoilerKey password.  (4-digit PIN,push; or 4-digit PIN,<six-digit code>.
  6. Press Connect.
  7. Say OK if prompted to confirm the Connection Request.
  8. If you used push, check your mobile device with Duo Mobile installed for the request, and approve.

You are now connected to the VPN, and can confirm by clicking on the networking icon in the system tray.

CheckPoint Capsule VPN Client can be downloaded from the Google Play store and Apple Appstore.  This application will allow you to make a VPN connection from your mobile device.

  1. Download the CheckPoint Capsule application from the Google Play store or Apple Appstore.
  2. Name the VPN connection something you will remember (ex: PNW VPN).
  3. Enter the server address: vpn.pnw.edu or vpn2.pnw.edu.
  4. Select “Username Password” as the authentication method to be used.
  5. Enter your PNW username (without @pnw.edu) and your BoilerKey password.  (4-digit PIN,push; or 4-digit PIN,<six-digit code>.
  6. Press Connect.
  7. Say OK if prompted to confirm the Connection Request.
  8. If you used push, check your mobile device with Duo Mobile installed for the request, and approve.

You are now connected to the VPN and can confirm by looking at your device’s notifications area and locating “Connected to Capsule VPN”.

If you are unable to use the installed clients, the web portal is an alternative.  It should only be used if you cannot install the clients.  Currently, Internet Explorer is the only supported browser due to the plugin requirement.  The web portal version will also require Java to be installed.

  • In your browser, type https://vpn.pnw.edu or https://vpn2.pnw.edu
  • Log in to the VPN Portal using your Career Account and BoilerKey. This is the same set of credentials that you use to log into myPNW and BlackBoard.
  • Note: On a Mac, you may be asked to allow popups. If you get this message, click OK, and disable your popup blocker.
  • When logged in you should see a blue screen with login prompts.
  • Now you will be able to start the remote desktop process. Under the Native Applications section click “Connect”.
  • You should now see the SSL Network Extender window
  • The very first time you connect you will need to download and install the SSL Network Extender. Any subsequent connections will not require this as it will already be installed. The exception to this is if there is an update to the Network Extender.

Mac Users

  • You may be asked to accept several certificates. Choose Trust for all of these.
  • On a Mac (or Linux), if the download does not appear click the Settings link to the right of the “Native Applications” header:
  • Once you are in the settings, you can manually download the Network Extender by clicking the “download” link on that page.
  • Once the Network Extender is connected you should see the status field as Connected:

Note: You can leave these windows up in the background or minimize them, but do not close them. If you close the windows, you will be disconnected from the network