search

RITlug / wiki

A collection of information on how to access university resources at RIT using Linux Operating Systems.
Creative Commons Attribution Share Alike 4.0 International
7 stars 5 forks source link

Update VPN instructions for new SSO/MFA changes #21

Closed MoralCode closed 1 year ago

MoralCode commented 1 year ago

TS is making ongoing changes to help reduce risk to RIT’s critical information in a rapidly-evolving cybersecurity threat environment.

In order to enhance security, the following changes are being made for RIT VPN Connection (Cisco AnyConnect VPN Client)

  • Beginning Tuesday, May 30, your login experience will be slightly different. You will be prompted to authenticate through single-sign on.
  • On Thursday, June 1, you will also be prompted to use Duo Multi-Factor Authentication (MFA). 

How does this impact the vpn config for each of the clients outlined in the wiki?

MoralCode commented 1 year ago

for those using network-manager on a non-KDE-plasma system, you should just be able to create a new openconnect vpn connection with vpn.rit.edu as the host using the network-manager-openconnect package you already installed. This appears to work based on a LUGger testing on Ubuntu 22.04 (which im told ships with openconnect 8.20).

KDE systems seem to have a known issue "no SSO handler": https://gitlab.com/openconnect/openconnect/-/issues/424

MoralCode commented 1 year ago

preliminary updates pushed