Vista Users - please read this first!
The Cisco VPN client only works on Vista machines that meet the below requirements:
- - 32 bit version only
- - Clean OS installation of Vista required
- - 'Start before logon' feature not supported
- - SmartCard Authentication not supported
- - 64 bit not supported
Cisco VPN Client: installation, setup and use...
These steps should be followed to prepare your computer to use the VPN Service at WSU:
- Download and install a VPN Security Certificate New 2008 certificate now available!
- Download and install the Cisco VPN client (version 5.0.01.0600)
- Configure the Cisco VPN client
- Using the Cisco VPN client
- (optional: setting up the VPN client to logon the VPN session prior to logging onto Windows)
Instructions to download and install the VPN Security Certificate...
The digital Security Certificate is used by the Cisco VPN client establish an encrypted tunnel between your computer and the WSU VPN Gateway. The Security Certificate must be installed (imported) before the VPN Client is configured.
Note: The following screen shots were made using Windows XP and Internet Explorer 6. If you are using different software, some of the screens may appear different but their function should be the same.
The result of this procedure will be the creation of two certificates on your computer. One will be the root certificate of the Information Technology Certificate Authority (CA) and the other will be the VPN Security Certificate that is used to configure the VPN Client Software. This latter certificate is a personal certificate. Click here for information on how to manage certificates using Windows 2000 and XP.
- Start the download by clicking this file name: wsuvpn.pfx
(this is a new certificate as of March 2008 that replaces the ‘old’ certificate)
The "File Download" window will appear. Click the Open button to start the Certificate Import Wizard. (You could alternately click the 'Save' button, locate the file when the download is complete and then start the Certificate Import Wizard by double clicking the file.)
- Click the Next button.
- Click the Next button. This will cause the display of a password prompt window.
- Enter wsuvpn in the password area. Ensure that the two check boxes are blank. Click the Next button.
- Allow Windows to automatically select a certificate store and click the Next button.
- Click the Finish button to start the actual importing of the certificates.
- Click the Yes button to add the Information Technology CA's certificate into your Root Store.
- Click the OK button.
Both the CA Root and the WSU VPN Security Certificate are now installed on your computer. The second step (outlined below) will discuss how to download and install the Cisco VPN client.
Instructions to download, install and configure the Cisco VPN client...
- Start the download of the Cisco VPN client by clicking on the file name: cisco_2000-XP-Vista_client.exe
When the following "File Download" screen appears, click the Run button. (You could alternately click the 'Save' button, locate the file when the download was complete and then open it by double clicking.)
- Select Run when prompted to run the software application.
- The WinZip Self-Extractor window will appear as seen below.
- Change the "Unzip to folder" to a name you can easily find. This example will use c:\vpnclient as seen below.
Click the Unzip button to create folder c:\vpnclient on your hard drive.
- Click the OK button to begin the Cisco VPN Client installation process. Please wait patiently while the installation proceeds (it may take a minute or more...).
- Once the 'Welcome' windows appears, click the Next button.
- Select the 'I accept the license agreement' radio button, then click the Next button.
- Select the Next button to indicate the software is to be installed on your hard drive in the 'C:\Program Files\Cisco Systems\VPN Client\' directory:
- Select Next to begin the installation process...
- Once the installation has completed, click the Finish button.
- You can now restart your machine. Section C below will discuss the steps required to configure the VPN client.
Instructions to configure the Cisco VPN client.
- Start the Cisco VPN client. You can either double-click your client icon
or use the Windows Start Menu to execute the VPN client application using the path: Start Menu / All Programs / Cisco Systems / VPN Client / VPN Client (the actual file name of the client is: ipsecdialer.exe)
Once launched, the below window will appear.
- Create a new Connection Entry by clicking the 'Connection Entries' menu item (or tab), then clicking New
This will bring up the below Connection Entry window.
- Fill in "Connection Entry:", "Description:", "Host":, click "Certificate Authentication" and select the "WSUPNb (Microsoft)" certificate.
Click Save.
- The main VPN Client window now looks similar to the image below.
- You are now finished configuring the Cisco VPN Client.
- To connect to the WSU Network, double click the "WSU VPN" connection entry.
Using the VPN Client.
- Start the Cisco VPN Client and you will see the below window.
- Double click the "WSU VPN" Connection Entry. The User Authentication prompt window will appear.
- Type your WSU Network ID or Friend ID and password. Then click the 'OK' button.
IMPORTANT - Friend IDs must append @wsu to the end of their Friend ID.
A series of connection messages will appear on the status bar of the VPN Client window. When the connection is established, a Banner is displayed.
- You may also see a 'connected' image near your Windows toolbar and see a yellow VPN Client icon in the toolbar as well.
- Click Continue and the Cisco VPN Client window closes and an icon appears on your Task Bar.
- You are now successfully up and running on the WSU network using a secure VPN tunnel.
Wireless Users and Off-Campus Users: All traffic bound for WSU campus locations will be securely passed through the VPN tunnel.
Off-Campus Users ONLY: Traffic bound for other non-WSU locations (like Yahoo, Google, etc...) will not pass through the VPN tunnel but will travel out your local ISP connection un-encrypted.
No comments:
Post a Comment