Revision as of 17:05, 19 January 2019

(Looking for the VPN for Students page?)

Step One: Configure an Authenticator App

Before you start, you must have access to an Authenticator app. This is typically a mobile phone app that can generate six-digit verification codes to allow multi-factor authentication.

Download the authy app

Click here for instructions on how to set up Microsoft Authenticator with your WSU account

Click here for instructions on setting up Authy Authenticator

Step Two: Enroll at https://otp.winona.edu

You must have access to an Authenticator app. This is typically a mobile phone app that can generate six-digit verification codes to allow multi-factor authentication.
Ensure your computer is connected to the Wazoo wireless network on campus

If you are on a desktop computer your wired network connection should suffice

All employees must start by setting up their One-Time Password (OTP) at this link while on campus: https://otp.winona.edu
Once on that page, enter your StarID in the Username field
Enter your network password on the next screen
Click Add OAUTH Token
Click the radio button next to Online then click Add
On the next page, scan the QR code with the authenticator app of your choice

You MUST click 'Done' after you scan your QR code!

We recommend Microsoft Authenticator or Authy

For the next steps you must be connected to an off-campus (home) network or VPN will fail to connect.

If you would like to test your VPN connection while still on-campus, connect to the EduRoam wifi network.

Connect to VPN on Windows 10

Open the Start Menu and type Cisco
Select 'Cisco AnyConnect Secure Mobility Client' when it appears
- If Cisco AnyConnect does not appear in your start menu, open your internet browser and go to https://ot.winona.edu

Once Cisco AnyConnect opens, replace tunnel.winona.edu with ot.winona.edu then hit Connect
You will be prompted to login with your StarID, your six-digit authentication code, and your StarID password
Select your group from the drop down list. If you do not know your group, just choose grp_employee as shown in the screenshot below.
- The format is StarID-123456 for username. Do not forget the dash between your StarID and the six-digit code from your Microsoft Authenticator or Authy app

Connect to VPN on macOS

Click on Spotlight in the upper right corner of your Mac
Type in "Cisco"
Select "Cisco AnyConnect Secure Mobility Client" when it appears
- If Cisco AnyConnect does not appear, open your internet browser and go to https://ot.winona.edu

Once Cisco AnyConnect opens, replace tunnel.winona.edu with ot.winona.edu then hit Connect

You will be prompted to login with your StarID, your six-digit authentication code, and your StarID password
Select your group from the drop down list. If you do not know your group, just choose grp_employee as shown in the screenshot below.
- The format is StarID-123456 for username. Do not forget the dash between your StarID and the six-digit code from your Microsoft Authenticator or Authy app

How do I access my network storage?

If you want to connect to personal network or department network drives from off-campus, you will first need to connect to VPN.

Windows 10

Open your Start Menu and click the "Click to Map Network Drives" tile located at the top middle of the screen
Re-open your Start Menu and click the "File Explorer" tile in the middle of the screen
Your network storage drives will be located under the "Network locations" heading. You may have to scroll down to find it.

macOS

In Finder, press and hold the <Command> key then tap the <K> key to bring up the "Connect to Server" prompt
Connect to one of the network locations listed in Fig 2.
Just copy/paste one of the addresses below if your list is not pre-populated
Personal storage: smb://store.winona.edu/users/
Department drive: smb://store.winona.edu/department/

Fig 2. Here is a sample of the server addresses you may need to connect to.

@@ Line 2: / Line 2: @@
 (Looking for the [[VPN for Students]] page?)
+==Step One: Configure an Authenticator App==
 '''Before you start, you must have access to an [https://www.login.gov/help/signing-in/what-is-an-authentication-app/ Authenticator app]. This is typically a mobile phone app that can generate six-digit verification codes to allow [https://en.wikipedia.org/wiki/Multi-factor_authentication multi-factor authentication.]'''
-==How do I connect to the employee VPN?==
+[https://support.authy.com/hc/en-us/articles/115001945848-Downloading-and-Installing-Authy-Apps Download the authy app]
-===Enroll at https://otp.winona.edu/enroll===
+[https://learn.winona.edu/Multi-Factor_Authentication_for_Office_365#Setup_Trust_Account Click here for instructions on how to set up Microsoft Authenticator with your WSU account]
-* First, ensure your computer is connected to the [[Wazoo]] wireless network on campus.
+[https://support.authy.com/hc/en-us/articles/360006303934-Add-a-New-Two-Factor-Authentication-2FA-Account-Token-in-the-Authy-App Click here for instructions on setting up Authy Authenticator]
-* All employees must start by setting up their One-Time Password (OTP) at this link '''while on campus''': https://otp.winona.edu/enroll
-* Once on that page, enter your StarID in the Username field
-* Enter your network password on the next screen
-* Click Add OAUTH Token
-* Click the box next to Online then click Add
-* On the next page, scan the QR code with the authenticator app of your choice.
-** '''You MUST click 'Done' after you scan your QR code!'''
-** We recommend [https://www.microsoft.com/en-us/account/authenticator Microsoft Authenticator] or [https://authy.com/download/ Authy].
-===Windows 10===
+==Step Two: Enroll at https://otp.winona.edu==
+# You must have access to an [https://www.login.gov/help/signing-in/what-is-an-authentication-app/ Authenticator app]. This is typically a mobile phone app that can generate six-digit verification codes to allow [https://en.wikipedia.org/wiki/Multi-factor_authentication multi-factor authentication.]
+# Ensure your computer is connected to the [[Wazoo]] wireless network on campus
+::* If you are on a desktop computer your wired network connection should suffice
+# All employees must start by setting up their One-Time Password (OTP) at this link '''while on campus''': https://otp.winona.edu
+# Once on that page, enter your StarID in the Username field
+# Enter your network password on the next screen
+# Click Add OAUTH Token
+# Click the radio button next to Online then click Add
+# On the next page, scan the QR code with the authenticator app of your choice
+::* '''You MUST click 'Done' after you scan your QR code!'''
+:::* We recommend [https://www.microsoft.com/en-us/account/authenticator Microsoft Authenticator] or [https://authy.com/download/ Authy]
+'''For the next steps you must be connected to an off-campus (home) network or VPN will fail to connect.'''
+'''If you would like to test your VPN connection while still on-campus, connect to the EduRoam wifi network.'''
+===Connect to VPN on Windows 10===
 * Open the Start Menu and type Cisco
 * Select 'Cisco AnyConnect Secure Mobility Client' when it appears
-* If it does not appear, open your internet browser and go to https://ot.winona.edu
+** If Cisco AnyConnect does not appear in your start menu, open your internet browser and go to https://ot.winona.edu
-* You will be prompted to Connect and login to WSU with your StarID, password, and two-factor authentication code
+[[file:CACVPNPC.png]]
+* Once Cisco AnyConnect opens, replace tunnel.winona.edu with ot.winona.edu then hit Connect
+* You will be prompted to login with your StarID, your six-digit authentication code, and your StarID password
+* Select your group from the drop down list. If you do not know your group, just choose grp_employee as shown in the screenshot below.
+** The format is '''StarID-123456''' for username. Do not forget the dash between your StarID and the six-digit code from your [https://www.microsoft.com/en-us/account/authenticator Microsoft Authenticator] or [https://authy.com/download/ Authy] app
 [[file:VPNmfa.png]]
-===macOS===
+===Connect to VPN on macOS===
-* Click on Spotlight in the upper right corner
+* Click on Spotlight in the upper right corner of your Mac
 * Type in "Cisco"
-* Select "Cisco AnyConnect Secure Mobility Client"
+* Select "Cisco AnyConnect Secure Mobility Client" when it appears
+** If Cisco AnyConnect does not appear, open your internet browser and go to https://ot.winona.edu
 [[File:VPN_Mac_Cisco_Search.png|400px]]
+* Once Cisco AnyConnect opens, replace tunnel.winona.edu with ot.winona.edu then hit Connect
-* Connect to ot.winona.edu
 [[File:otVPN.png|400px]]
-* Use your StarID and password along with your six-digit code from your [https://www.microsoft.com/en-us/account/authenticator Microsoft Authenticator] or [https://authy.com/download/ Authy] app when prompted to login.
+* You will be prompted to login with your StarID, your six-digit authentication code, and your StarID password
+* Select your group from the drop down list. If you do not know your group, just choose grp_employee as shown in the screenshot below.
+** The format is '''StarID-123456''' for username. Do not forget the dash between your StarID and the six-digit code from your [https://www.microsoft.com/en-us/account/authenticator Microsoft Authenticator] or [https://authy.com/download/ Authy] app
+[[file:macVPNmfa.png|400px]]
 =How do I access my network storage?=
+'''If you want to connect to personal network or department network drives from off-campus, you will first need to connect to VPN.'''
 ==Windows 10==
-You will need to manually map your Personal Network Storage also referred to as R: drive.
+* Open your Start Menu and click the "Click to Map Network Drives" tile located at the top middle of the screen
-* Open File Explorer from the Taskbar
+* Re-open your Start Menu and click the "File Explorer" tile in the middle of the screen
-* Use the drop down arrow in the top menu for 'Map network drive' and select Map network drive
+* Your network storage drives will be located under the "Network locations" heading. You may have to scroll down to find it.
-* Type the following in Folder:  \\store\users\(your StarID)
-* Select 'Reconnect at sign-in'
-* Finish
-'''macOS'''
+==macOS==
-* In Finder, hold down '''<CommandKey>''' then hit the '''<K>''' key to bring up "Connect to Server"
+* In Finder, press and hold the '''<Command>''' key then tap the '''<K>''' key to bring up the "Connect to Server" prompt
 * Connect to one of the network locations listed in Fig 2.
-** You can just type the address if it is not pre-populated
+* Just copy/paste one of the addresses below if your list is not pre-populated
-* Personal storage: smb://store.winona.edu/users/YourStarID
+* Personal storage: smb://store.winona.edu/users/
-* Department drive: smb://store.winona.edu/department
+* Department drive: smb://store.winona.edu/department/
 [[File:ConnectToServer.png|frame|Fig 2. Here is a sample of the server addresses you may need to connect to.]]
-=More on network storage=
-If you want to connect to Personal Network or Department Network drives from off-campus, you will need to connect to VPN before you can use the network drives.
-==Windows 10==
-* Open the Start Menu then select the '''Map Network Drives''' shortcut.
-* A black window will appear and map your drives. Do not close this window.
-* Double-click 'This PC' on your desktop to access your network drives (See Fig 1.)
-* Do not disconnect VPN or WiFi during use. Network access is required to maintain the VPN connection.
-==macOS==
-* In Finder, hold down '''<CommandKey>''' then hit the '''<K>''' key to bring up "Connect to Server"
-* Mac users connect to one of the network locations listed in Fig 2.
 =Related information=

Difference between revisions of "Virtual private network for employees"

Revision as of 17:05, 19 January 2019

Contents