Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
en:services:it_consulting:apple_consulting_center:mac_network:mac_vpn [2020/03/17 13:24]
jrichte4 [Connection via Cisco AnyConnect (10.5 and above)]
en:services:it_consulting:apple_consulting_center:mac_network:mac_vpn [2020/06/26 10:20] (current)
fketten translated german version
Line 2: Line 2:
  
 ===== General Information ===== ===== General Information =====
 +You can find general information about VPN connections [[en:​services:​network_services:​vpn:​start|here]]
  
-Using VPN, an encrypted connection can be established from a foreign network (DSL, mobile, Wifi etc.) into the GÖNET. 
  
-The usage of VPN is not only a way to make the connection more secure, it is also essential in order to access your home directory or other resources of University of Göttingen unreachable from outside of GÖNET ​(printers,​ servers, etc.)+We emphasise using //Cisco AnyConnect//​.
  
-<​del>​**UnfortunatelyVPN connection ​and a university IP do not automatically mean free access to the SUB databasesThe existing magazines are subject to different license agreements, so that a large part of them can be accessed only via Han Server authentication or directly from SUB.**</del>+For macOS 10.6 and laterit is possible to use the VPN with on-board software ​and without installing an additional client (see below). 
 +**Attention**: ​the alternative gateways **vpn-b.gwdg.de** and **vpn-c.gwdg.de** are not compatible with this method. To use these, you need to use //Cisco Anyconnect//​.
  
-**Now one can access licensed ebooks, electronic papers ​and (almost) every database of the SUB via vpn.**+<WRAP center round important 100%> 
 +Due to the current load in VPN, two more servers were set up in addition to vpn.gwdg.de:​ ** vpn-b.gwdg.de ​** and ** vpn-c.gwdg.de ​**. We recommend using one of them. This is ** only possible with the AnyConnect method **, not by using the '​included client'​. 
 +</​WRAP>​ 
 +  
 +===== Connection via Cisco AnyConnect =====
  
 +++++ Step-by-step image instruction:​ macOS (please click) |
  
-To establish a VPN connection, a VPN client which supports the Cisco proprietary extensions to the VPN protocol (group authentication) must be installed on your computerWith OS X 10.6 or newer, such a client is already included in the system, no additional software is requiredFor OS X 10.5, the use of Cisco AnyConnect is necessary.+{{ :​de:​services:​network_services:​vpn:​01-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​02-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​04-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​05-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​06-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​07-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​08-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​09-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​10-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​11-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​12-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​13-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​14-mac.png | }} 
 +{{ :​de:​services:​network_services:​vpn:​15-mac.png | }} 
 +++++
  
-<WRAP center round important 100%> +Should you encounter any issues during this process, please contact [[https://​gwdg.de/​support|our support]]. 
-Due to the current load in VPN, two more servers were set up in addition ​to vpn.gwdg.de: ** vpn-b.gwdg.de ** and ** vpn-c.gwdg.de ​**We recommend using one of themThis is ** only possible with the AnyConnect method ​**, not the '​included client'​+ 
-</WRAP>+1. Connect ​to [[https://vpn.gwdg.de/|vpn.gwdg.de]] and use your credentials to log in. Your credentials are typically just your email address and the corresponding password. 
 + 
 +**Attention:** Because of the current overload, it may not always be possible for you to connect to vpn.gwdg.de. ​You may alternatively download the client from [[https://​ftp.gwdg.de/​anyconnect/​|our FTP server]] by using the following credentials:​ Username ​**vpn**; Passwort **fernzugriff**. 
 + 
 +2. Click on //​AnyConnect//​ within ​the navigation bar on the left
 + 
 +3. Click on //Start AnyConnect//​. If you do not have AnyConnect installed yet, you are asked to download the installation file. You may need to wait several seconds until the download starts. 
 + 
 +4. Install AnyConnect from the file you have just downloaded. Please make sure that you are in possession of sufficient administration rights on your system or consult your system administrator.
    
-===== Connection via Cisco AnyConnect ​(10.5 and above) =====+5. Open the newly installed //Cisco AnyConnect ​Secure Mobility Client// to start the VPN.
  
-With Mac OS 10.5, you must use the Cisco AnyConnect client, which requires Java. Installation is almost self-explanatory. +6Insert any gateway address (**vpn-b.gwdg.de** or **vpn-c.gwdg.de** or **vpn.gwdg.de**) and click on //Connect//.
-First, open the browser of your choice; open the page [[https://vpn.gwdg.de/|vpn.gwdg.de]] and login with your user data in accordance to the form given there.+
  
-Now the certificate dialog "Check Certificate"​ appears +7Enter your credentialsThese are usually your email address ​and the corresponding password.
-  * check the box "​Always trust rxxxxxx.gwdg.de",​ or +
-  * click on the arrow "​trust" ​and "​Always Trust" next to "When using this certificate"​ +
-  * in both cases, accept by clicking ​the "​Continue"​ button+
  
-A window to select ​the certificate to use for authentication appears. If no certificate is displayed, just press OK. Now the auto detection of the available Java version starts+8. Accept ​the terms and conditions ​for using the VPN.
  
-If the Java environment from Sun / Oracle is installed, the client installation begins after two queries for security and confirmation. If another Java environment is installed, WebStart stops and prompts you to download a file that installs Sun / Oracle’s Java+You are now connected to the VPN.
  
-After the installation, the client is launched automatically,​ here you type in vpn.gwdg.de and your credentials+If you want to start the VPN againjust start the client ​directly. It is not necessary to install the program again.
  
-More details are available on [[https://​info.gwdg.de/​dokuwiki/​doku.php?​id=en:​services:​network_services:​vpn:​anyconnect |Cisco AnyConnect for Windows, Linux and Mac OS X ]] 
  
 <WRAP center round important 100%> <WRAP center round important 100%>
Line 44: Line 67:
 </​WRAP>​ </​WRAP>​
  
 +===== Connect by using the integrated VPN Client =====
  
-===== Connection via the Built-in VPN Client =====+**Attention:​** This method is only compatible with vpn.gwdg.de and does **not** work with the alternative Gateways vpn-b.gwdg.de and vpn-c.gwdg.de ​
  
-With Mac OS X Snow Leopard (10.6) or later, you can use the built-in VPN client directly. ​To do this, open System Preferences and click on "​Network"​. ​ If the lock icon in the bottom left corner is still "​closed",​ click on it and enter your administrator password in the appearing window. ​Now click the plus icon to add a new connection. Click "​VPN"​ -> "VPN Type" -> "Cisco IPSec"​. ​Under "​Service Name" you can enter a random name.+With Mac OS X Snow Leopard (10.6) or later, you can use the built-in VPN client directly. 
 + 
 +1. Open System Preferences and click on "​Network"​. If the lock icon in the bottom left corner is still "​closed",​ click on it and enter your administrator password in the appearing window. 
 + 
 +2. Click the plus icon to add a new connection
 + 
 +3. Click "​VPN"​ -> "VPN Type" -> "Cisco IPSec"​. 
 + 
 +4. For "​Service Name"you can enter a random name.
  
 {{ :​en:​services:​it_consulting:​apple_consulting_center:​mac_network:​vpn01.jpg?​nolink |}} {{ :​en:​services:​it_consulting:​apple_consulting_center:​mac_network:​vpn01.jpg?​nolink |}}
  
-Click "​Create"​. You can now select the new connection and enter the **"​GoeMobile" ​server address: 134.76.22.1**+5. Click "​Create"​. You can now select the new connection and enter the server address: ​**134.76.22.1**
  
 For the "​Account Name" enter your GWDG account. Employees use the extension "​@gwdg",​ while students use "​@gwdg-stud"​. Additionally,​ you should enable "Show VPN status in menu bar". For the "​Account Name" enter your GWDG account. Employees use the extension "​@gwdg",​ while students use "​@gwdg-stud"​. Additionally,​ you should enable "Show VPN status in menu bar".
  
 {{ :​en:​services:​it_consulting:​apple_consulting_center:​mac_network:​vpn02.jpg?​nolink |}} {{ :​en:​services:​it_consulting:​apple_consulting_center:​mac_network:​vpn02.jpg?​nolink |}}
-<WRAP center round box 100%> 
  
-|  <​forename.surname>​@|**gwdg-stud** |Students of Göttingen University | 
-|  <​username>​@|**gwdg** | GWDG users and staff | 
-|  <​username>​@|**uni-goettingen** | Staff of Göttingen University | 
-|  <​username>​@|**mpibpc.mpg** |Max Planck Institute for Biophysical Chemistry| 
-|  <​username>​@|**em.mpg** |Max Planck Institute of Experimental Medicine | 
-|  <​username>​@|**zv.uni-goettingen** | University Central Institutions | 
-|  <​username>​@|**zvw.uni-goettingen** | University Central Institutions | 
-|  <​forename.surname>​@|**med.uni-goettingen** | University Medical Center Göttingen | 
-|  <​username>​@|**mmg.mpg** | Max Planck Institute for the Study of Religious and Ethnic Diversity | 
-|  <​username>​@|**mpimf-heidelberg.mpg** | Max Planck Institute for Medical Research Heidelberg| 
-|  <​mailaddress>​@|**psych.mpg** | Max Planck Institute of Psychiatry Munich | 
-|  <​username>​@|**dpz** | German Primate Center | 
  
-</​WRAP>​ +6. Now click on the button "​Authentication Settings"​ and type “goemobile” as the key. As group name, use "​goemobile"​ as well.
-Now click on the button "​Authentication Settings"​ and type “goemobile” as the key. As group name, use "​goemobile"​ as well.+
  
 {{ :​en:​services:​it_consulting:​apple_consulting_center:​mac_network:​vpn03.jpg?​nolink |}} {{ :​en:​services:​it_consulting:​apple_consulting_center:​mac_network:​vpn03.jpg?​nolink |}}
  
-Now you can establish a VPN connection by clicking "​Connect"​. If you have enabled the VPN status in the menu bar, you can always start and exit the VPN connection with GoeMobile by clicking on the corresponding icon. +7. Now you can establish a VPN connection by clicking "​Connect"​
-For logging in to VPN, you must authenticate yourself. Students type their username as "​firstname.lastname@gwdg-stud",​ while GWDG accounts are entered as "​username@gwdg"​. ​Be sure not to type "​.de"​ at the end!+ 
 +8. If you have enabled the VPN status in the menu bar, you can always start and exit the VPN connection with GoeMobile by clicking on the corresponding icon. 
 + 
 +9. For logging in to VPN, you must authenticate yourself. Students type their username as "​firstname.lastname@gwdg-stud",​ while GWDG accounts are entered as "​username@gwdg"​.
  
 +Be sure not to type "​.de"​ at the end!