VPN

A virtual private network (VPN) allows you to join a private network using an existing public network by creating an encrypted tunnel between two hosts.

Establishing a VPN connection creates a secure tunnel between your off-campus computer or mobile device and the PNW network, allowing you to access services and resources that are configured to only allow access to devices on the PNW network.

When to Connect

You do not need to connect to the VPN to access the majority of PNW resources remotely.  You should always attempt to connect and use the resources that you need without the VPN first, and then only connect if you are unable to work without connecting.  This frees up space in the VPN for those that require it.

The following resources will require a VPN connection to access from off-campus (this list is not comprehensive):

You do not need a VPN connection to access these common resources (this list is not comprehensive):

  • E-Mail
  • Office Applications
  • MyPNW Portal
  • Brightspace
  • Success Factors
  • R: and H: Drives
  • Google Drive
  • Ariba
  • Concur
  • Zoom
  • WebEx

How to Connect

Note: Beginning with Fall 2021, PNW will be migrating from CheckPoint VPN Client to Cisco AnyConnect VPN Client. Instructions on how to install the client and how to log in are found below. CheckPoint VPN Client will no longer be available after October 1st, 2021.

Effective November 3, 2020, VPN2.PNW.EDU will no longer be available.  All users should point their VPN clients to VPN.PNW.EDU.  Instructions for adding new addresses to the VPN Client can be found below.

Cisco AnyConnect software is available through the ITAP Purdue CommunityHub page.

Visit ITAP CommunityHub .

After logging in with your BoilerKey, click on the option for Antivirus and Security Software.

You will see options for Cisco AnyConnect for Personally Owned Computers and Cisco AnyConnect for University Owned Computers. You will be able to choose your operating system and download the software by following the prompts.

It will download a zipped folder to your computer. Unzip this folder and then install the software. If you need assistance with these directions, please contact the CSC at 219.989.2888 or via the Virtual Helpdesk.

 

Cisco AnyConnect is also available on many University Owned Windows computers by going to the Microsoft Software Center in your Start Menu.

Screenshot of Cisco AnyConnect Log in

AnyConnect can use a general portal to connect, or specialized portals for teams accessing specific tools and services.

The general portal is webvpn.pnw.edu.

You will use your username and your BoilerKey to log into the VPN client.

Any teams that use specialized portals will have that communicated to them directly.

CheckPoint VPN client will be phased out in favor of a more stable VPN connection with Cisco AnyConnect by the Fall of 2021. This should enable smoother, more stable connections for PNW VPN users.

  1. Quit AnyConnect
  2. In Finder use Go-> Go to Folder… to open this directory: /opt/cisco/anyconnect/profile where you will find one or more files that end in .xml
  3. Copy the xml files to the Desktop or another folder, leaving no .xml files in this directory (You can also delete this file if you wish)
  4. Start AnyConnect, type your VPN site and connect (The original VPN site will still show in the pre-filled list until you enter in this new site)
  5. Quit AnyConnect and relaunch – you should now see the VPN site last entered either pre-filled in, or in the pulldown menu of choices.

Note: Beginning with Fall 2021, PNW will be migrating from CheckPoint VPN Client to Cisco AnyConnect VPN Client. Instructions on how to install the client and how to log in are found above. CheckPoint VPN Client will no longer be available after October 1st, 2021.

Download the Check Point Endpoint Security client:

VPN Client for Windows Users

VPN Client for Mac Users

  • Open the Check Point Endpoint Security client.
    • If it is already running, right-click on the lock icon in the system tray or notification area.
    • Click on “Connect to…”
  • Click on “Yes” when it asked “Would you like to configure a new site?”
  • In the Site Wizard, click “Next.”
  • Type “vpn.pnw.edu” in the “Server address or Name:” box.
  • Click “Next” at the bottom of the panel.
  • Click on “Next” again.
  • Click “Finish” at the bottom of the panel.
  • Click on “Yes” when it asks “Would you like to connect?”
  • Enter your PNW username in the “Username:” box.
  • Enter your PNW Boilerkey in the “Password:” box.
  • Click “Connect” at the bottom of the pane.
  • Click “Show hidden icons.”
  • Hover over CheckPoint VPN – lock icon. This will show if the system is connected to the VPN.

Note: Beginning with Fall 2021, PNW will be migrating from CheckPoint VPN Client to Cisco AnyConnect VPN Client. Instructions on how to install the client and how to log in are found above. CheckPoint VPN Client will no longer be available after October 1st, 2021.

  • Open the Check Point Endpoint Security client.
  • Once it is running, right-click on the lock icon in the system tray or notification area.
  • Click on “Connect to…”
    • Note: If your VPN client is already connected to a VPN server, or is attempting to connect, you first need to choose “Disconnect.”
  • On the top of client screen, click on the current server address dropdown menu next to Site: and select [New Site].
  • In the Site Wizard, click “Next.”
  • Type the name of the second server to add in the “Server address or Name:” box. (vpn.pnw.edu)
  • Click “Next” at the bottom of the panel.
  • Click on “Next” again.
  • Click “Finish” at the bottom of the panel.
  • Click on “Yes” when it asks “Would you like to connect?”
  • Enter your PNW username in the “Username:” box.
  • Enter your PNW Boilerkey in the “Password:” box.
  • Click “Connect” at the bottom of the pane.
  • Click “Show hidden icons.”
  • Hover over CheckPoint VPN – lock icon. This will show if the system is connected to the VPN.

Note: Beginning with Fall 2021, PNW will be migrating from CheckPoint VPN Client to Cisco AnyConnect VPN Client. Instructions on how to install the client and how to log in are found above. CheckPoint VPN Client will no longer be available after October 1st, 2021.

CheckPoint Capsule VPN Client can be downloaded from the Google Play store.  This application will allow you to make a VPN connection from a Chromebook.

  1. Download the CheckPoint Capsule application from the Google Play store.
  2. Name the VPN connection something you will remember (ex: PNW VPN).
  3. Select “Username Password” as the authentication method to be used.
  4. Enter the server address: vpn.pnw.edu.
  5. Enter your PNW username (without @pnw.edu) and your BoilerKey password.  (4-digit PIN,push; or 4-digit PIN,.
  6. Press Connect.
  7. Say OK if prompted to confirm the Connection Request.
  8. If you used push, check your mobile device with Duo Mobile installed for the request, and approve.

You are now connected to the VPN, and can confirm by clicking on the networking icon in the system tray.

Note: Beginning with Fall 2021, PNW will be migrating from CheckPoint VPN Client to Cisco AnyConnect VPN Client. Instructions on how to install the client and how to log in are found above. CheckPoint VPN Client will no longer be available after October 1st, 2021.

CheckPoint Capsule VPN Client can be downloaded from the Google Play store and Apple Appstore.  This application will allow you to make a VPN connection from your mobile device.

  1. Download the CheckPoint Capsule application from the Google Play store or Apple Appstore.
  2. Name the VPN connection something you will remember (ex: PNW VPN).
  3. Enter the server address: vpn.pnw.edu.
  4. Select “Username Password” as the authentication method to be used.
  5. Enter your PNW username (without @pnw.edu) and your BoilerKey password.  (4-digit PIN,push; or 4-digit PIN,.
  6. Press Connect.
  7. Say OK if prompted to confirm the Connection Request.
  8. If you used push, check your mobile device with Duo Mobile installed for the request, and approve.

You are now connected to the VPN and can confirm by looking at your device’s notifications area and locating “Connected to Capsule VPN”.

Note: Beginning with Fall 2021, PNW will be migrating from CheckPoint VPN Client to Cisco AnyConnect VPN Client. Instructions on how to install the client and how to log in are found above. CheckPoint VPN Client will no longer be available after October 1st, 2021.

If you are unable to use the installed clients, the web portal is an alternative.  It should only be used if you cannot install the clients.  Currently, Internet Explorer is the only supported browser due to the plugin requirement.  The web portal version will also require Java to be installed.

  • In your browser, type https://vpn.pnw.edu
  • Log in to the VPN Portal using your Career Account and BoilerKey. This is the same set of credentials that you use to log into myPNW and BlackBoard.
  • Note: On a Mac, you may be asked to allow popups. If you get this message, click OK, and disable your popup blocker.
  • When logged in you should see a blue screen with login prompts.
  • Now you will be able to start the remote desktop process. Under the Native Applications section click “Connect”.
  • You should now see the SSL Network Extender window
  • The very first time you connect you will need to download and install the SSL Network Extender. Any subsequent connections will not require this as it will already be installed. The exception to this is if there is an update to the Network Extender.

Mac Users

  • You may be asked to accept several certificates. Choose Trust for all of these.
  • On a Mac (or Linux), if the download does not appear click the Settings link to the right of the “Native Applications” header:
  • Once you are in the settings, you can manually download the Network Extender by clicking the “download” link on that page.
  • Once the Network Extender is connected you should see the status field as Connected:

Note: You can leave these windows up in the background or minimize them, but do not close them. If you close the windows, you will be disconnected from the network