Introduction
This article instructs on how to use the VPN on Linux. You will need sudo access to the machine.
The related article How Do I Connect to the OSU VPN Using Cisco and Duo? does include a Cisco AnyConnect client download for Linux which does work, but some Linux users prefer openconnect.
The alternate package used on Linux to connect to the VPN is named openconnect. This article will give a general overview of how to install and configure openconnect on Ubuntu/Debian, and Fedora/CentOS/RHEL.
There are many Linux distributions, and we do not have the resources to provide instructions for all of them. They may be different in various ways, such as package names and commands. We have tried to mention other distributions; once installed the configuration should be the similar.
We strongly recommend Linux users use the Jump host for remote access as it is faster.
Installation
Open a terminal window on your desktop. Type one of the following commands in the terminal.
Ubuntu/Debian:
sudo apt-get install network-manager-openconnect-gnome
Fedora/CentOS/RHEL:
sudo dnf install openconnect NetworkManager-openconnect NetworkManager-openconnect-gnome
Please note:
- CentOS/RHEL through 7.x use 'yum' instead of 'dnf'.
- CentOS/RHEL require that you enable the EPEL repository to install these packages.
- If you use KDE instead of gnome, also install 'plasma-nm-openconnect'.
Cisco AnyConnect
The related article How Do I Connect to the OSU VPN Using Cisco and Duo? does include a Cisco AnyConnect client download for Linux which does work, but some Linux users prefer openconnect.
Configuration - Command Line
Most cases you will want to use the graphical client below, but for command line the instructions are as follows:
- In a terminal window type: sudo openconnect --user=lastname.# vpn.service.osu.edu
- You will be ased which group to connect to, in most cases OSUnet.
- You will get two identical password prompts! The first is your lastname.#@osu.edu password, the second will be the word push which will send a Duo push.
- At this point you'll see the connection banner (***** ATTENTION *****) and are connected.
- It appears to hang but that's ok, it just stays forgrounded.
- You can work in another terminal or backgroud this job or use tmux/screen if you only have one terminal.
- When finished hit control-c to end the VPN session.
Configuration - Graphical
Summary
- Open network settings
- Add a new VPN connection
- Use the OpenConnect/Cisco Anyconnect option
- The gateway name is vpn.service.osu.edu
- Username is your OSU username
- First password is your OSU password
- Second password is either the word push or a passcode from the Duo app
- Disconnect VPN when you are finished!
- This preserves resources as there are limited VPN connections.
- This ensures better performance for you, as the VPN add a lot of network overhead if used for services that do not require it.
Step by step
Open network settings. In the Gnome desktop, this is at the upper right:
- This image shows Wired Settings, but it may say something else like Wireless Settings. Click on this Settings item.
In the window that opens, click on the plus sign to the right of VPN:
Click on Multi-protocol VPN client (openconnect):
Name the VPN as you wish. In this example, it is VPN 1.
Enter the name vpn.service.osu.edu in the Gateway field.
Click the blue "Add" button at the top right of the window..
To activate the VPN connection, click the slider button to the right of the VPN name you just created:
[05ActivateVPN]
Enter your OSU credentials in the Username and first Password fields.
Your second Password will be from Duo. If you use Duo on a smart device, you can either:
- type “push” and then click OK, and confirm the push on your mobile device OR
- go into Duo on your mobile app and request a passcode by pressing the key button
- GROUP should be OSUnet for non-OSU managed machines.
When you are done using the service that requires the VPN, please disconnect promptly.
Click on the settings widget at the top right of your desktop. Click on the named VPN you created, and click on Turn Off:
