Students must have a faculty or staff sponsor for access to the VPN.
NCSSM’s Palo Alto Networks firewall provides a VPN (Virtual Private Network), GlobalProtect, as part of its capabilities. Instructions for its installation and use by NCSSM staff are provided below. Please create a ticket for ITS if you have any issues or questions regarding these instructions.
Installing the GlobalProtect Client
Follow the set of instructions appropriate to your client system to install the GlobalProtect client. Then, continue to the Using GlobalProtect section for instructions on its use.
You may install the GlobalProtect client either on campus or off campus; however,
You may connect to the NCSSM network using the GlobalProtect client only from off campus -on-campus attempts will fail.
To install the GlobalProtect VPN client on Windows, follow these steps:
Determine whether your system is a 32-bit or a 64-bit system. Click on your start button, right-click on Computer and select Properties. You should see this screen:
Look for the System type attribute. Its value will indicate whether you have a 32-bit or a 64-bit system.
Download the appropriate client from https://goo.gl/bnkV2Y. If you are running a 64-bit operating system, use the file GlobalProtect-Windows-64bit-vXXX.msi (where XXX indicates a version number). If you are instead using a 32-bit operating system, use GlobalProtect-Windows-32bit-vXXX.msi.
Locate the installer you downloaded in the previous step, and open it to install the application. Click Next on each of the presented screens to proceed with the installation.
After the installation completes and you click Close, the VPN client will automatically launch, then it will present a window asking for a portal address. Enter fw.ncssm.edu and click Connect.
Enter your NCSSM credentials in Username and Password. (It is not necessary to prepend your username with “NCSSM\” or to include "@ncssm.edu" at the end of the Username.) Leave the Remember Me box checked unless you wish to enter your credentials each time you use the VPN. If you get a certificate warning, accept the certificate.
Palo Alto Networks does not currently provide a GlobalProtect client for Linux systems. However, there is a compatible VPN client, vpnc, available for Linux. To install vpnc on Ubuntu, follow these steps:
User name: Your NCSSM user name, without prepended “NCSSM\”.
User password: Your NCSSM password. Set the pull-down menu value on the right to Saved unless you wish to enter your password each time you connect to the VPN.
Group name: Test1
Group password: 1test. Again, set the pull-down menu value on the right to Saved unless you wish to enter the group password each time you connect to the VPN.
Ensure that Use hybrid authentication is unchecked.
Click on Advanced…, then enter the following values:
Vendor: Cisco (default)
Encryption method: Secure (default)
NAT traversal: NAT-T when available (default)
IKE DH Group: DH Group 2 (default)
Perfect Forward Secrecy: Server (default)
Local port: 0
Ensure that Disable Dead Peer Detection is unchecked
On the IPv4 Settings tab:
Ensure that Method is Automatic (VPN).
Click on Routes..., then on the window that opens:
Check Use this connection only for resources on its network.
Enter values in the following table by using the Add button and entering the values in each cell. (Leave the Metric cell blank.) Each cell will have a red background until a legal value is entered, at which point the background will turn green.
Students needing access to the Computer science server (cs.ncssm.edu) also need to repeat step ii with the address 10.1.0.0, and the same netmask and gateway.
The VPN client is now configured. See below for usage instructions.
Once GlobalProtect is installed, use these instructions to connect your client to the NCSSM VPN. Note that you can connect only from outside the NCSSM network. The instructions differ depending on your client system.
Windows and macOS
To use the GlobalProtect VPN, launch the GlobalProtect client and select File > Connect. Wait until the status is Connected.
Once you are done using the VPN, disconnect the client by selecting File > Disconnect. It will take a few seconds for the VPN tunnel to be disabled and your normal connection to be re-established.
To use the GlobalProtect VPN, click on the Network Manager icon and select VPN Connections > NCSSM-vpn (or the name you specified when you configured the client). Wait for the VPN to connect. The network icon will change to show a small lock in the lower-right.
Once you are done using the VPN, again click on the Network Manager icon and select VPN Connections > Disconnect VPN. Note that it will take a few seconds for the VPN tunnel to be disabled and your normal connection to be re-established.