Google+
Skip to content »
ITS and UVa logos for printed output
MENU menu icon

The Cisco VPN (Virtual Private Network) at UVa

Access to Secure UVa Resources

What is the UVa VPN Service?

The UVa Virtual Private Network (VPN) service provides secure, authenticated access to on-Grounds network resources. Using the VPN service, authorized users can access protected UVa applications and resources normally limited to on-Grounds use. When connected to a UVa VPN service, network traffic between your system and the VPN service is encrypted to protect it from electronic eavesdropping.

To use the Cisco VPN with UVa networks and services, you must use the UVa-specific Cisco VPN software. Please answer the questions in the wizard below to install the software you need.

Select and Install VPN Client Software

(This section requires that Javascript not be disabled in your browser.)

Select the service you will use
UVa Anywhere
Provides an off-Grounds connection to resources that normally require you to be on Grounds to use them; e.g., Library resources, the UVa Home Directory Service, the Exchange Server, servers restricted by departments, etc. Usable from off Grounds only.
Joint VPN
Enables academic users to access high-security network resources from on or off Grounds. Individual resources require additional permissions and a UVa Identity Token.
UVa-More-Secure-Network
Enables access for faculty and staff to resources on the More Secure Network from on or off Grounds.
Select your operating system

Windows (8, 7)
Mac OS X 10.7 and up
iOS 3 and up (iPhone/iPad/iPod Touch)

Select your operating system

Windows (8, 7)
Mac OS X 10.7 and up

Solution

The UVa Anywhere VPN client is available for the Apple iPhone, iPad, and iPod Touch.

  1. To enable your iOS device to run UVa Anywhere, you must first run the Auto-Setup Tool for encrypted cavalier wireless, NetBadge, and VPN.
  2. Once you have run the Auto-Setup Tool, you can use the built-in iOS VPN client to connect to UVa Anywhere:
    1. Tap Settings, then VPN.
    2. Slide to toggle the switch from OFF to ON.
  3. Remember that you cannot connect to UVa Anywhere from on Grounds. The VPN connection only functions when you are off Grounds.
Token Verification

Do you have a working UVa Identity Token?

Yes No (or I don't know)

Token Required

Use of the JointVPN service requires the use of a working UVa Identity Token. Please visit our UVa Identity Token Authentication page to find out how to proceed.

Install Cisco AnyConnect Client
  1. All Mac OS X users installing any VPN Service need to have a working certificate in the browser they use for downloading the VPN Client. The easiest way to get a certificate is with the Network Setup Tool.
  2. Starting with Mac OS X 10.7 Lion, Java is not included by default. Java must be installed to use the Cisco AnyConnect VPN software. If you need to install Java or are unsure, do the following:
    • Run Java Preferences in the Applications/Utilities folder. If Java is not already installed, you will be prompted to allow installation via Software Update.
    • Once Java is installed, verify that the check box Enable applet plug-in and Web Start Applications is checked, and the boxes below the On column in the list of available versions are checked.
  3. All Mac OS X Versions that have Java Preferences:
    • Open Java Preferences in the Applications/Utilities folder. Reorder the Java versions to place the 32-bit version first. The list can be reordered by clicking on the 32-bit version and dragging it above the 64-bit version.
    • Quit Java Preferences.
    • If Safari is open, quit it and restart it.
  4. To install the JointVPN service, first insert your UVa Identity Token and wait 10-15 seconds.
  5. ; then

Important Notes about Web Browsers & the Installation Process

Only Safari is known to work with the UVa Identity Token for installing the Cisco AnyConnect client.

Please note the following when installing:

  • Depending on your security settings, you may see a prompt to allow use of a digital certificate, or directing you to choose a digital certificate.
  • You may be required to provide your computer's administrative password to allow the installer to run.
  • You may see an additional window to approve the running of the Java application separate from the UAC window.
  • If you are upgrading from an earlier Mac OS X operating system, you will need to uninstall the Cisco VPN client and reinstall it, and also follow instructions for installing the UVa Identity Token Software.
Install Cisco AnyConnect Client
  1. All Mac OS X users installing any VPN Service need to have a working certificate in the browser they use for downloading the VPN Client. The easiest way to get a certificate is with the Network Setup Tool.
  2. Starting with Mac OS X 10.7 Lion, Java is not included by default. Java must be installed to use the Cisco AnyConnect VPN software. If you need to install Java or are unsure, do the following:
    • Run Java Preferences in the Applications/Utilities folder. If Java is not already installed, you will be prompted to allow installation via Software Update.
    • Once Java is installed, verify that the check box Enable applet plug-in and Web Start Applications is checked, and the boxes below the On column in the list of available versions are checked.
  3. All Mac OS X Versions that have Java Preferences:
    • Open Java Preferences in the Applications/Utilities folder. Reorder the Java versions to place the 32-bit version first. The list can be reordered by clicking on the 32-bit version and dragging it above the 64-bit version.
    • Quit Java Preferences.
    • If Safari is open, quit it and restart it.
  4. ; then

Important Notes about Web Browsers & the Installation Process

Safari and Firefox are known to work with the UVa Anywhere VPN Service.

Please be aware of the following:

  • Users of any browser will need to provide their Mac OS password to allow the installer to run.
  • Safari will present a screen telling you that a certificate is required. The window below the message may be blank. Click the OK button to continue.
  • If the browser displays a screen with the error "UVa Anywhere Access requires a Personal Digital Certificate for authentication." either no valid digital certificate is available, or you have Mac OS X 10.6 and you have not set the identity preference correctly (the Network Setup Tool sets this for you). Mac OS X 10.6 is not supported by ITS as of Dec. 31, 2013 and you should upgrade if possible.
Install Cisco AnyConnect Client
  1. If your computer does not have Java installed, download the latest version.
  2. Insert your UVa Identity Token and wait 10-15 seconds.
  3. ; then

Important Notes about Web Browsers & the Installation Process

Only Internet Explorer (IE) is known to work with the UVa Identity Token for installing the Cisco AnyConnect client.

Please note the following in Internet Explorer:

  • Depending on the security settings, you may see a prompt to allow use of a digital certificate, or directing you to choose a digital certificate.
  • You may see the Windows UAC (User Access Control) pop-up requiring that you allow the installer to run.
  • You may see an additional window to approve the running of the Java application separate from the UAC window.
  • There may be a one-line message displayed at the top of your browser's content window asking you to approve use of an Active-X control; click anywhere in that line except the X at the end, and approve it. For Windows 7 users, this will not work properly and will fail over to the Java-based installer instead.
Install Cisco AnyConnect Client
  1. If your computer does not have Java installed, download the latest version.
  2. You will need to have a current, valid digital certificate installed on your computer. You can install a certificate easily by running the Network Setup Tool.
  3. ; then

Important Notes about Web Browsers & the Installation Process

Safari, Internet Explorer (IE), and Firefox are known to work with the AnyConnect client. If you use IE, detailed step-by-step instructions are displayed. Other browsers may require additional steps to install certificates.

Please note the following:

  • With any browser, depending on the security settings, you may see a prompt to allow use of a digital certificate, or directing you to choose a digital certificate.
  • With any browser, you may see the Windows UAC (User Access Control) pop-up requiring that you allow the installer to run.
  • With any browser, you may see an additional window to approve the running of the Java application separate from the UAC window.
  • With Internet Explorer there may be a one-line message displayed at the top of your browser's content window asking you to approve use of an Active-X control; click anywhere in that line except the X at the end, and approve it. For Windows 7 users, this will not work properly and will fail over to the Java-based installer instead.

Caveats for Using UVa VPN Services

Use Additional Security

Even using VPN encryption, no system is ever 100% secure. ITS provides a list of resources to help you secure your electronic devices.

Be Aware of Export Controls

If you plan to take the Cisco VPN out of the country on a computer or plan to download it while abroad, be aware that the US Department of Commerce restricts the export of cryptographic software. The use of the Cisco VPN is also illegal in any of the following countries: Cuba, Iran, Libya, North Korea, Syria, and Sudan. Additional restrictions are listed on the download site.

  Page Updated: Friday 2014-03-28 10:15:47 EDT