f5 vpn faq document

8/10/2019 f5 VPN Faq Document

1/21

Virtual Private Network (VPN)Frequently Asked Questions

PLEASE NOTE T!is is a livin" do#u$ent and will %e u&dated

re"ularly

Contents

1 'lossary

* Su&&orted +lient Plat,or$s

*1 -!at o&eratin" syste$s does F. VPN su&&ort

'eneri# Questions

1 -!ere are t!e lo#ations / #an #onne#t to0

* VPN Tokens

*1 -!at ty&es o, Tokens are t!ere0

** -!at is a 2ard Token0

* -!at is a So,t Token0

* -!at is a 3o%ile So,t Token0

*. -!ere #an / request a Token0

*4 -!y P/N5Token aut!enti#ation over SSO Password and +erti6#ates0

+onne#tions

1 -!at is t!e Ti$eout len"t! on $y #onne#tion0

* 2ow $any devi#es #an / use on t!e VPN at t!e sa$e ti$e0 (+on#urrent+onne#tions)

7o / !ave to %e a Lo#al Ad$inistrator to #onne#t to t!e VPN0

-!y does $y 87P #onne#tion ,ail0

. -!y !as it taken $e strai"!t to a s&e#i6# "ateway0

:rowsers /ssues

1 +losin" $y %rowser #loses $y #onne#tion -!y0* -!y does t!e we%to& a&&ear in a new ta%0

. Su&&ort Pro#esses

.1 / a$ !avin" issues wit! t!e VPN -!o do / s&eak to0

.* 2ow do / raise a ti#ket0

4 Non


2/21

91 +an / still a##ess t!e >uni&er VPN w!en we !ave $i"rated to F.0

9* -!en will >uni&er VPN %e de#o$$issioned0

7evi#e Ty&e and +onne#tions1

1 -!at devi#es and o&eratin" syste$s are su&&orted wit! t!e VPN #onne#tion01

* 2ow do / #onne#t usin" a -indows 7evi#e01

*1 /nstallin" t!e +lient1

** +onne#tin" to t!e VPN 2ow do / #onne#t usin" a 7evi#e runnin" A&&le 3a# OS@0

iOS 7evi#e (,or iP!oneiPad)01

. -!at &rerequisites do / need ,or t!e 3o%ile VPN0

4 / !ave a %la#k%erry B #an / #onne#t to t!e VPN0

. Ot!er Features*

.1 -!at is t!e 8estri#ted -e%to&0*

.* -!y !ave / %een "ranted a restri#ted -e%to&0*

. +an / #onne#t to $y work #o$&uter t!rou"! 8e$ote 7eskto&0*

4 +o$$on /ssues and 8esolutions*


3/21

1 Glossary

VPN

Virtual Private Network B a way to a##ess t!e internal 'E network w!ile %ein" oCsitiOS

A&&leDs $o%ile o&eratin" syste$ ,or t!e iP!one iPad and iPod tou#!F5

Vendor ,or t!e VPN solution

RDP

8e$ote 7eskto& +onne#tion B re$otely a##ess your #o$&uter ,ro$ !o$e

Mac OSX

T!e O&eratin" Syste$ w!i#! runs on a 3a#:ook Pro 3a#:ook Air and on a 3a# 3int!e latest sta%le release is na$ed G3ountain LionH

3 Dot network

Anot!er na$e o, t!e internal 'E network na$ed a,ter t!e /P address ran"e 'E own

(@@@)

2 Suorte! Client Plat"or#s

2$1 %&at oeratin' syste#s !oes F5 VPN suort

Microso"t( %in!ows Mac OSX )inu* Mo+ileDe,ices

*


4/21

London

ASPA+

:an"alore (unavaila%le to AviationEner"y :usiness users)

S!an"!ai

Sin"a&ore

Sydney

3$2 VPN okens

3$2$1 %&at tyes o" okens are t&ere0

T!ere are diCerent tokens w!i#! #an %e issued to you T!ese are 2ard So,t and 3o%iletokens T!ese are used ,or "ainin" a##ess to t!e 'E network usin" your P/N5Token#o$%ination %y #reatin" a 4 di"it #ode every 4? se#onds

3$2$2 %&at is a ar! oken0

A !ard token is a &!ysi#al token issued %y 'E w!i#! #reates atoken every 4? se#onds T!e s#reen will dis&lay t!e 4 di"it #odew!i#! #o$%ined wit! your &in will "rant you a##ess to t!e VPNAlso on t!e le,t !and side o, t!e s#reen are %arsD t!at indi#ate1?


5/21

3$2$ %&at is a Mo+ile So"t oken0

T!e $o%ile so,t token is an a&&li#ation ,or iOS w!i#! allows you to !ave a##ess to t!e 8SAToken ,ro$ your $o%ile /t is very si$ilar to a so,t token %ut is availa%le to you wit!out!avin" your work #o$&uter wit! you

3$2$5 %&ere can / re6uest a oken0

All tokens are availa%le to request on t!e /dentity 3ana"er we%site (!tt&sid$"e#o$)

Please $ake your way to t!e /d3 site and you s!ould !ave your standard &anel o,o&tions Please #li#k on A##ounts K 7evi#es

-!en you 6nd yoursel, on t!e &a"e na$ed G$ana"e your &ersonal a##ountsH &leas#li#k on GNeed A##ounts A##ess0 +li#k !ere to requestH Also you #an see w!atdevi#es w!i#! you !ave re"istered wit! your a##ount
https://idm.ge.com/https://idm.ge.com/


6/21

Fro$ t!is &a"e you #an request t!e diCerent ty&es o, token you $ay require For a 2ard

Token or a 3o%ile Token &lease #li#k on t!e link na$ed GSecur/D oken-re6uest "or allRS7 &ar!ware an! so"tware tokensH For So,t Tokens &lease #li#k t!e link GSo"t okenRe6uestH at t!e %otto$ o, t!e list

o -!en #li#kin" on GSecur/D oken-re6uest "or all RS7 &ar!ware an! so"tware

tokensH youDll %e "iven several o&tions ,ro$ w!i#! you #an #!oose ,ro$ Please#!oose t!e one $ost relevant to you 6ll in t!e ,or$ and su%$it

o -!en #li#kin" on t!e GSo"t oken Re6uestH link workow ,or$s will &o& u& in a

diCerent window Please 6ll in t!is ,or$ and su%$it


7/21

3$2$8 %&y P/N9oken aut&entication o,er SSO Passwor! an!Certi:cates0

7urin" Proo, o, +on#e&t we used SSO &asswords and t!e #erti6#ates on t!e devi#e2owever ,eed%a#k ,ro$ o, t!e :usiness nit leaders was t!ey were un#o$,orta%leutiliin" an e$ail #erti6#ate as t!e * ,a#tor aut!enti#ation and want to still levera"eP/N5Token te#!nique ,or se#urity reasons /n t!e lon"?1 Fro$ t!e start %utton 6nd t!e G+o$&uterH listin" and ri"!t #li#k and #!oose

GPro&ertiesH* A new &o&u& will s!ow "ivin" %asi# in,or$ation a%out your #o$&uter S#roll down t

G+o$&uter Na$e do$ain and -ork'rou& settin"sH T!e FQ7N is t!e GFull +o$&uter Na$eH &ro&erty

3$3$5 %&y &as it taken #e strai'&t to a seci:c 'ateway0

-!en #onne#tin" to !tt&sras#onne#t"e#o$ t!e server #!e#ks w!ere you are in t!eworld t!rou"! several ,a#tors su#! as /P address and !eaders ,ro$ t!e %rowser Fro$t!ere it $akes an edu#ated "uess w!i#! "ateway is #loser to you and t!ere,ore youeJ&erien#e a qui#ker #onne#tion to t!e 'E network T!is is a lot $ore eR#ient t!an t!ele"a#y VPN w!i#! &ointed to a "ateway w!i#! is asso#iated wit! your SSO
https://ras.connectge.com/https://ras.connectge.com/


8/21

2owever i, you would like to #!oose a $ore s&e#i6# server you #an #!oose your lo#ationw!en lo""in" in %y sele#tin" t!e desired lo#ation ,ro$ t!e dro&down %oJ -!en sele#tin"t!e new lo#ation it will &oint you to a diCerent 8L and you $i"!t lose any data youDveinserted into t!e SSO and P/N5Token 6elds

3$ @rowsers /ssues

3$$1 Closin' #y +rowser closes #y connection$ %&y0

-!en #onne#tin" to F. VPN t!rou"! your %rowser t!e #onne#tion is de&endent u&on t!e%rowser B li$itin" t!e need ,or a #lient to %e installed on ea#! $a#!ine w!ile "ivin"a##ess to $ore advan#ed ,eatures su#! as 87P 2owever i, you do #lose your %rowsersession youDll lose your #onne#tion %ut t!ere are alerts w!i#! will a&&ear i, you do try

3$$2 %&y !oes t&e we+to aear in a new ta+0

T!is is w!ere youDve "ot a settin" in your %rowser to o&en u& all new windows in a ta% int!e sa$e window T!is #an #ause &ro%le$s ,or t!e F. so,tware runnin" on your #o$&uterw!en it tries to $ini$ie it to t!e tray To "et around t!is issue you will !ave to un#!e#k

t!is o&tion on your settin"s

/nternet *lorer

1 /n t!e $ain %rowser window &lease !ead to Tools


9/21

+li#k Ok and t!en A&&ly ,or t!e #!an"es to take eCe#t

3$5 Suort Processes

3$5$1 / a# &a,in' issues wit& t&e VPN$ %&o !o / seak to0

Mou #an raise a ti#ket wit! t!e 2el&desk (!tt&!el&desk"e#o$) For $orein,or$ation a%out t!e &ro#ess to raise a ti#ket &lease navi"ate to G2ow do / raise ati#ket0H

3$5$2 ow !o / raise a ticket0

T!ere are t!ree diCerent ways to #onta#t t!e 2el&desk t!ese are P!one +li#kuni&er environ$ent is "oin" to %e run in &arallel to t!e F. $i"ration initially and usewill !ave a##ess to t!is sers #an also roll%a#k to t!eir old VPN servi#e w!ilst were$ediate any issues :usinesses will only in#ur a sin"le #!ar"e even i, users a##ess %ot!servi#es durin" t!e sa$e $ont!
http://helpdesk.ge.com/https://helpdesk.ge.com/http://ras.connectge.com/http://helpdesk.ge.com/https://helpdesk.ge.com/http://ras.connectge.com/


10/21

3$=$2 %&en will Aunier VPN +e !eco##issione!0

>uni&er #on#entrators will %e de#o$$issioned startin" 3ay *?1


11/21

De,ice ye an! Connections

$1 %&at !e,ices an! oeratin' syste#s are suorte! wit& t&e VPNconnection0

T!e devi#es and o&eratin" syste$s w!i#! are su&&orted wit! t!e VPN is t!e sa$e as w!a'E su&&orts as a %usiness T!ese in#lude

-indows 9 -indows ;

-indows @P

o Note @P is now End o, Li,e and will not %e availa%le ,ro$ ;t!A&ril *?1

3a# OS@

A&&le iOS . 4 K 9 (,or iP!one and iPad)

$2 ow !o / connect usin' a %in!ows De,ice0

PLEASE NOTE /, your i#on on t!e deskto& is t!e sa$e as t!e one s!ownon t!e ri"!t !and side and NOT a F. %all &lease ,ollow t!e instru#tions%elow to install t!e &re


12/21

-!en installed it will alert you to #li#k yes to a#knowled"e t!e su##ess,ul #o$&letion o,t!e so,tware

$2$2 Connectin' to t&e VPN

$2$2$1 Client

Fro$ your deskto& &lease dou%le #li#k on t!e F. %all na$ed G8e$ote A##essH (&i#tured%elow)

T!is will o&en u& a #lient w!i#! looks si$ilar to t!e &i#ture %elow To start t!e #onne#tion&lease #li#k t!e #onne#t %utton

A,ter a #ou&le o, se#onds a &o&u& will a&&ear wit! a SSO 5 P/N5TOEN %oJes to insertyour #redentials Mou are also a%le to #!an"e "ateway %y #li#kin" on a dro&down %oJ A,teyouDve added your #redentials &lease &ress GLo"inH to start t!e tunnel


13/21

T!is &ro$&t will disa&&ear and t!e ori"inal dialo" will a&&ear w!ile it "oes t!rou"! t!esta"es to #onne#t A,ter a #ou&le o, se#onds it s!ould s!ow G+onne#tedH and you are a%leto see so$e data %ein" trans,erred

Mou will also see t!e F. %all in t!e task%ar T!is is w!ere you #an retrieve t!e dialo" w!en

it !as %een $ini$ied as well as "ain $ore advan#ed o&tions to t!e #lient

8i"!t #li#kin" on t!e F. %all will "ive you t!e ,ollowin" o&tions


14/21

$2$2$2 %e+to

Fro$ your &re,erred %rowser &lease navi"ate to !tt&sras#onne#t"e#o$

T!is will o&en u& t!e #losest "ateway to your "eo"ra&!i#al lo#ation Fro$ t!ere enter yoSSO and P/N5Token and #li#k Lo"in /, your #redentials are in#orre#t it will #o$e %a#k to

t!e sa$e &a"e wit! an error $essa"e

-!en lo""ed in it will "o t!rou"! a several !ost #!e#ks and t!en &oints you to t!ewe%to&
https://ras.connectge.com/https://ras.connectge.com/


15/21

Fro$ !ere you are a%le to a##ess internal sites su#! as Su&&ort +entral and -e%$ailwit!out #reatin" a tunnel

+li#k on t!e 'E Network A##ess %utton T!is will %rin" u& a new s$all window

T!is new window will "o t!rou"! several ste&s w!i#! will 6nis! wit! #reatin" a se#ure#onne#tion to t!e 'E internal network and $ini$ie t!e window down to t!e tray


16/21

To dis#onne#t ,ro$ t!e VPN you will need to dou%le #li#k on t!e i#on in t!e tray and #li#kdis#onne#t

Mou will also %e alerted w!en #losin" down t!e we%to& i, you would like to dis#onne#t ,ro$t!e VPN

And you will "et a si$ilar &o&u& w!en #losin" t!e #onne#tion window


17/21

$3 ow !o / connect usin' a De,ice runnin' 7le Mac OSX0

For 'E $ana"ed 3a# OS@ $a#!ines users #an ,ollow t!e %elow instru#tions to install ,ro$t!e 'E A&&3arket

For Non


18/21

On#e installed t!e G8e$ote A##essH %utton under t!e 'E 3ono"ra$ on t!e to& %ar will!ave #!an"ed to an F. %all instead o, t!e >uni&erDs &adlo#k To start u& t!e a&&li#ation&lease #li#k on t!at o&tion

Mou will %e &resented wit! a new i#on on t!e to& %ar and also a new window To start t!e#onne#tion &lease #li#k G+onne#tH

T!e window will u&date wit! a s!runk we%&a"e w!i#! will ask you ,or your &in and tokensi$ilar to w!at you would see w!en a##essin" t!e site ,ro$ a #o$$on %rowser /nsert yo


19/21

details in and #li#k Gsu%$itH 7e&endin" on i, your #redentials are #orre#t you will eit!er%e &resented wit! an error $essa"e or a new s#reen

On#e you !ave %een aut!enti#ated t!e s#reen will #!an"e to a "ra&! &a&er Fro$ !eret!e a&&li#ation will "o t!rou"! t!e ste&s to #reate t!e tunnel

On#e t!e tunnel !as %een #reated t!e window will $ini$ie to t!e do#k and&strea$7ownstrea$ data will %e u&dated on t!e i#on in t!e to& %ar


20/21

*

To dis#onne#t ,ro$ t!e VPN all you will !ave to do is #li#k on t!e i#on on t!e to& %ar and#li#k dis#onne#t

$ iOS De,ice ;"or iP&one>iPa!


21/21

*

5 Ot&er Features

5$1 %&at is t&e Restricte! %e+to0

T!e restri#ted we%to& is a landin" &a"e to t!e 'E network w!ere you !ave li$ited a##essto #ertain ,eatures and a&&li#ations on t!e 'E Network T!ese in#lude

-e%$ail

Su&&ort +entral

8e$ote 7eskto& +onne#tion

5$2 %&y &a,e / +een 'rante! a restricte! %e+to0

Mou !ave eit!er tried to a##ess t!e VPN t!rou"! a Non

f5 vpn faq document

Documents