• No results found

VPN Network Access. Principles and Restrictions

N/A
N/A
Info
Download
Protected

Academic year: 2021

Share "VPN Network Access. Principles and Restrictions"

Copied!
11
0
0

Loading.... (view fulltext now)

Download now ( 11 Page )

Full text

(1)

VPN Network Access Principles and Restrictions

High Speed access via broadband Internet connections is available for the Agency network resources such as BBG Email, Shared and Home directories, and BBG FTP sites. This service is only available to BBG Employees with valid BBG Computer ID’s. Requests for VPN access should be submitted by your manger via the intranet VPN Request form at http://help.ibb.gov/indexVPN.cfm. Please note after you are issued a VPN token, the token will be disabled after thirty days of non use.

Access to other BBG applications such as DaletPlus, budget systems, personnel systems, engineering systems, and other administrative applications within the

Washington facility will be referred to the system administrator or contracting officer for access authorization.

Computer Security

Before you make a VPN connection to the agency, make certain you have "anti-virus" software installed and properly configured on the computer you are using, and that the virus "signature" files are up-to-date. Always check the manufacturer’s update site for new signatures immediately before making a VPN connection.

While you are connected to the Agency through a VPN connection—whether you are using a government or personal laptop, or a home computer—that computer temporarily becomes part of the agency’s computing internetwork. Therefore, all access to the public Internet from the computer is controlled by the agency’s perimeter security "firewall." VPN connections are subject to special firewall security controls in addition to those that apply to computers installed in the agency’s buildings.

Your Entrust security token uniquely identifies you to the agency’s access monitoring software. Your Entrust security token and your personal identification number, when used together, authenticate you to the agency’s firewall. Do not disclose your personal verification number (PVN) or lend your Entrust security token to anyone. If your personal security number is accidentally compromised or your Entrust security token is lost or stolen, contact our 24-hour IT Service Desk immediately at +1 202 382-7200. Collect calls will be accepted.

User ID and Passwords

VPN users will require a BBG User ID and Password. The User ID will be the BBG Computer ID used to access the standard Agency network. The Password consists of two parts, a six (6) digit PVN and an eight (8) digit number displayed by the token.

• Do not write your PVN on or near the token • Do not write your PVN on the computer • Do not repeat the PVN to friends or coworkers • Tokens will be disabled after 30 days of inactivity

(2)

Tokens

Users requesting VPN access to the BBG Network will be assigned a token for use when connecting to the Agency network. When the token is powered on it displays an eight digit number. This number is synchronized with the BBG Internal network to assure strong authentication of user identity and protect access of the BBG network from unauthorized users. The combination of PVN and token Number will be required for outside access to the BBG network.

Do not share your Token or PVN

DO NOT COMPROMISE YOUR PVN OR Token BY SHARING IT WITH OTHERS. Lost Tokens or forgotten PVN’s.

Forgotten PVNS or lost tokens should be immediately reported to the IT Directorate Service Desk at (202) 382-7200. Collect calls will be accepted for this purpose. Support Contact

 IT Directorate Computer Systems Support -- Service Desk (202) 382-7200

Important Notice about the behavior of your workstation with the VPN SecureID Client installed!

Please note that the VPN client application will modify your local security policy as it applies to Internet communications, local networks, and some wireless routers, to comply with the BBG Security Policy when you are connected to the BBG network. To prevent BBG security policies from being affective during personal use of your

workstation you must disconnect from the BBG network. Note:

• Only printers attached directly to the VPN Client Workstation will be able to print. Locally attached network printers will not function from the VPN Client workstation while the VPN client is active.

VPN Software Installation and configuration

(3)

Procedures

For Installing the 32bit VPN Client on a

Remote Laptop or PC

Cisco Systems VPN Setup Procedures

1. Login as Administrator.

2. Select following link “Install VPN Drivers and Software Windows Vista, 2000, XP” on the opening page of the CD or execute

“\Release_4.9_5.0\vpnclient_setup.msi” on the CD to start VPN Driver installation.

Select “Run”.

3. If you get a window that says “Setup has detected an existing version of the Cisco Systems VPN Client.” Click yes at the bottom of this window to uninstall the previous version.

Note: If the uninstall does not start automatically you must first remove the old version of the VPN client through “Control Panel”, Add or Remove Programs to continue.

(4)

Delete all items including Profiles and Certificates if prompted.

4. Ensure the Yes button is marked and click Finish. Your machine will reboot. After rebooting you can proceed with the installation.

(5)

6. On the next screen click the Yes button to accept the license agreement.

(6)

8. On the next screen accept the default settings, hit Next.

(7)

10. Click Finish to reboot the machine

11. Click yes to restart workstation.

12. After your machine has started back up, go to Start, Programs, Cisco Systems VPN Client, VPN Client. Click on VPN Client to start the VPN Client.

(8)

Connecting to the VPN Network

When access to the BBG Network is desired you must start the VPN client and initiate the VPN connection. This process will allow access to BBG Network services such as internal email, Home and Shared directories, FTP access, and BBG internal printers if configured as if you were physically inside the BBG facility.

Please note that network resources such as printers and applications will not appear on your personal computer the same as on your workstation within the BBG building

because your workstation was not configured by The IT Directorate. The IT Directorate does not configure personal workstations.

When access to the BBG Network is no longer desired you should “Stop” the VPN Service and resume normal workstation operations.

Select from the tool bar. “Start | Cisco Systems VPN Client | VPN Client”

(9)

If the above dialog box does not appear proceed.

Enter your “BBG Computer User ID” in the Username: field.

Enter your “[PVN][Displayed Token Number]” in the Passcode: field. Select “OK”

Press Continue after you have read the Security Banner

Congratulations, you have successfully installed and configured the VPN client.

Enter your “BBG Computer User ID” in the Username: field.

Enter your “[6 digit PVN] plus [8 digit Displayed

Token Number]” in the Passcode: field.

(10)

DISCONNECT from the BBG Network by selecting “Disconnect” from the VPN Client dialog.

Home and Shared Directories

After a successful VPN connection, access to Home directories can be accomplished by opening windows explorer or clicking on start-run and typing "\\es_home\home\"first letter of your user

ID"\"user ID" and “Enter” for the URL or location.

If the above path does not connect you to your home directory use “\\152.75.72.215\home\\"first letter of your user ID"\"user ID ex. \\es_home\home\j\jdough.

(11)

Note: Only authorized directories will be accessible. If the above path does not connect try “\\152.75.72.215\shared

When prompt for User ID and Password use the following format: User ID: "broadcasting\"BBG Computer User ID"

References

Download now ( PDF - 11 Page - 707.33 KB )

Related documents

YOUR GUIDE TO BROADBAND HIGH-SPEED INTERNET ACCESS and HOME NETWORKING

With broadband home networking products like those offered by SOHOware, multiple computers in your home or office (laptops, desktops or both) can all share a single high-speed

Broadband Service Architecture for Access to Legacy Data Networks over ADSL Issue 1

Access Network ISP (POP) Regional Broadband Network CO Corporate Networks Regional Operation Center Internet Content Providers Network Access Provider Service Providers

Logical & Physical Security

A VPN can be defined as a means for using the public network infrastructure, such as the Internet, to provide private, secure access to applications and corporate network

Unsupervised Camera Localization in Crowded Spaces

b) MDS-MAP algorithm: For networks having nearly collinear cameras, such as the ‘Single linear flow’ net- works, MDS-MAP produces much worse errors than other algorithms,

Fanboy And Chum Chum Dollar Day Transcript

Shown as him with fanboy chum chum dollar day transcript quarters and chum suddenly fanboy and chum unknowingly get into a stand, chum chum to the swallowing.. Past to fanboy can

USER MANUAL NETWORK DRIVE XS EXTERNAL NETWORK HARD DRIVE / 3.5" / GIGABIT LAN / USB 2.0. Rev. 945

To access the Freecom Network Drive XS via FTP from the Internet, make sure that the FTP port specified in the Network Drive XS settings is forwarded to the Network Drive XS

Design of Cloud-based and IPTV Digital Signage System

IPTV is a service that provides television programming services (sports, news, movies, etc.) and other interactive entertainment content (music, games, advertising)

Central Texas College District Human Resource Management Operating Policies and Procedures Manual Policy No. 294: Computer Security Policy

Users gaining access to CTCD computing resources via a virtual private network (VPN), the wireless network, or Outlook Web Access (OWA) are responsible for ensuring their systems