Virtual Private Network (VPN) Policy In an effort to increase the security of Wright State University's information technology systems Computing and Telecommunications Services (CaTS) provides Virtual Private Network (VPN) services to the University community. The VPN offers secure access for faculty/staff/students/consultants (clients) who need access to information technology systems that are not otherwise available to clients from off-campus or on-campus (wireless) networks. I. Purpose The purpose of this policy is to provide guidelines for VPN connections to Wright State University's internal network. Wright State's VPN service is designed to provide secure/encrypted access to network resources on the Wright State Network. Using the VPN server to access Internet resources external to Wright State is not recommended. II. Policy 1) VPN gateways will be set up and managed only by Wright State University CaTS. 2) Only VPN software that is approved by and/or distributed by CaTS may be used to connect to the Wright State University VPN servers. 3) Faculty and Staff are granted general VPN access. Additional approval is required for access to sensitive systems. Students are granted access upon request. VPN applications will be available for the management of equipment and servers, access to departmental managed computers and access to internal information resources. If additional access is required beyond general access privileges, please contact the Help Desk at email@example.com. 4) By using VPN technology with personal equipment, users must understand that their machines are a de facto extension of Wright State University's network, and as such must comply with Wright State University's Information Technology Policies. 5) All computers connected to Wright State University's internal networks via VPN or any other technology must use the most up-to-date anti-virus, anti-spyware, operating system patches, and firewall software. 6) Sponsored third parties such as software consultants or vendor support personnel, can gain access to campus systems using the VPN. A Wright State University employee must sponsor the application by the third party. In addition, the third party must complete and sign an agreement with Wright State University. Employees needing the necessary forms may contact the CaTS Help Desk at 937-775-4827. 7) It is the responsibility of the users with VPN privileges to ensure that unauthorized persons are not allowed access to Wright State University internal networks. 8) The VPN connection provides secure access into the Wright State Network. VPN does not, by itself, provide Internet connectivity. When off campus, users are responsible for providing their own Internet service in order to use Wright State's VPN service. 9) VPN users will be automatically disconnected from Wright State University's network after thirty minutes of inactivity. The user must then log on again to reconnect to the network. Artificial network processes should not be used to keep the connection open. 10) Only one active VPN connection is allowed per user and the VPN concentrator is limited to a total connection time of 8 hours per user in one session. 11) The VPN client is currently available for Windows 2000/XP/Vista and Mac OS X. Approved users are responsible for the installation of the VPN software. There is no support for 64-bit versions of Windows. 12) Users must have prior authorization from their immediate supervisor prior to CaTS installing VPN client software on university computers or setting-up a user VPN account. CaTS does not extend support to personally owned computers for the installation and troubleshooting of Novell client software. III. Enforcement Any user found to have violated this policy may be subject to loss of certain privileges or services, including but not necessarily limited to loss of VPN services.
I Have Read