The University of Arizona

VPN Client

 


Overview

A Virtual Private Network (VPN) provides a secure connection from your computer to the network you are connecting to. The VPN client is the piece of software that handles the connection between your home computer, laptop, or mobile device and the UA network.
 
The University of Arizona's support VPN Client is Cisco AnyConnect Secure Mobility Client.
 
Cisco AnyConnect is available free of charge to all faculty, staff, and students with a valid UA NetID.
 

UA VPN Download

back to top


Downloading and Installing AnyConnect VPN on Windows, Mac, and Linux

back to top


Downloading and Installing AnyConnect VPN on Mobile Devices

back to top


Establishing a VPN Connection Using UA NetID+

NOTE:  Beginning April 30, 2015, all faculty, staff and students using the VPN client must be enrolled in UA NetID+ Two-Factor Authentication.  Click here for more information on UA NetID+.

Establishing a VPN connection with NetID+ is very similar to the normal sign-on process. When you start your VPN client, you will be prompted for your NetID username and password as before, but there will be an additional field titled NETID+ Method.

To access VPN with NetID+, you can do one of the following:

  1. Enter a numeric passcode that was generated on your device or on the NetID+ Manage Your Account page, or
  2. Type one of the following words in the NetID+ Method field

Registered NetID+ Device Method (select one)

Explanation

push

Push is available via the Duo Mobile app on iOS, Android, Windows, and BlackBerry devices. Just review the request and tap Approve/Confirm/Connect.

phone

Uses a callback number to a registered phone.

SMS

Generates a new batch of SMS one-time passcodes via text message to your phone.

passcode

Login using the one time passcode, generated via Duo Mobile App, SMS, Yubikey, or bypass code generated on the NetID+ self-service site.

Connect to VPN using Duo Mobile Application (Smartphones and Tablets)
Connect to VPN using SMS Text Messages
Connect to VPN using Cellphone or Landline (no text messages)
Connect to VPN using Passcodes/Bypass Codes

back to top


Disconnecting the VPN Client

In order to disconnect from the VPN, click the AnyConnect icon in the system tray.  It will pop up a window that looks like this:

Click Disconnect.

Further questions should be directed to the 24/7 IT Support Center at (520) 626-TECH (8324), or https://uassist.arizona.edu.

back to top


Network Managers:  VPN Group Setup Information

As the campus moves towards full implementation of MPLS, individual VPN groups with small sets of IP addresses will be phased out.  Unfortunately, departmental VPN groups were created in the past as a form of authorization to various networks and resources on those networks. This practice does not scale to a campus our size. Authorization to resources is the responsibility of the resource owner and needs to be done at or near the resource.

Network Managers: VPN Ranges
UITS does not have a public list of every one of the individual VPN ranges for specific groups but the two ranges for the VPN are:
  • 150.125.112.0/22 
  • 10.138.0.0/17
  • Users receiving one ot the 10.138.0.0/17 addresses and going to an off campus site will have their IP address changed (NAT'd) to 150.135.211.246.
We consider the following networks the campus:
  • 150.135.0.0/16 
  • 128.196.0.0/16 
  • 172.16.0.0/12 
  • 192.12.69.0/24 
  • 198.151.212.0/24 
  • 204.27.250.0/24 
  • 206.207.240.0/23 
  • 208.68.28.0/22 
  • 208.75.160.0/21
and anything greater than 10.64.0.0 up to 10.255.255.255
 
The standard General Split Tunnel UA VPN ranges are:
  • 150.135.114.1-150.135.115.250  or 150.135.114.0/23
  • 10.138.64.0-10.138.79.255  or 10.138.64.0/20

back to top


Support or Assistance

If you have questions or need assistence with VPN, contact the 24/7 IT Support Center at (520) 626-TECH (8324), or https://uassist.arizona.edu.

 

back to top