Home > Resources and Services > SIPA Computing > Remote Access
Virtual Private Network (VPN) Policy
Purpose
These policies and procedures apply to the use of CUIT/SIPA’s Virtual Private Network (VPN) service, which is one mechanism CUIT/SIPA provides for authorized users to access University computing and network resources from remote locations. These policies and procedures apply to Faculty and Staff of SIPA only. All other policies covering the use of University computing services by authorized users are still in effect when resources are accessed from remote locations, as are all regulations which protect the confidentiality and integrity of information entrusted to the University’s stewardship.
Benefits
A VPN allows encrypted access to your resources, such as your SIPA network documents, FFE, AP/CAR, CAPS, OPG/GC, SIS Mainframe via Telent, SAS via Telnet, Business Objects, SDR - SIS Desktop Reports. This access is available from anywhere, with any computer that has internet access.
Definitions:
-
Virtual Private Network (VPN) – is one or more encrypted connections over a shared public network, typically over the Internet, which simulates the behavior of direct, local connections.
-
Point-to-Point Protocol (PPP) – is a communication protocol that enables a user to utilize a dial-up connection (commonly a modem using standard phone lines) to connect to the Internet.
-
Digital Subscriber Line (DSL) – is a method for home users and small businesses to have high-speed access to the Internet over standard telephone lines. Because of the technology used, a DSL customer must be within a certain distance from the phone company’s CO (Central Office) for DSL to be available.
-
Cable (also referred to as cable modem) – is a type of Internet connection provided by the local cable company, used to transfer data at high speeds over the cable television network.
Account Administration
VPN accounts are automatically created for current faculty and staff of SIPA. All VPN users will be authenticated to their UNI account username and password. When a staff or faculty member is no longer employed, the VPN account is terminated at the same time as the LAN account.
Client Connection Setup
SIPA’s Office of Information Technology will provide VPN HelpDesk support for the following platforms only at this time:
-
Windows XP (home or professional
-
Windows Vista
-
Windows 7
To request support, email sipait@columbia.edu or by open a ticket with SIPA HelpDesk at (212) 854-0112.
Client Restrictions
All users must install anti-virus software on each computer from which the VPN server is accessed. The anti-virus software must be updated regularly with new anti-virus definitions. Also, all users are required to keep their computer updated with the latest operating system and software patches available from their respective vendors.
Microsoft Windows-based PC’s should have the automatic updater configured. For information and instructions on automatic updates, visit www.microsoft.com, and search on keywords “automatic update”.
SIPA reserves the right to audit all VPN client systems, and all communication between VPN client systems and the SIPA network, for compliance with all applicable Information Technology Services security requirements.
Users connecting to the VPN server using a broadband connection, such as cable or DSL, should consider enabling a software or hardware firewall. The software firewall is built into Windows XP (Service Pack 3). For more information see Microsoft Web site. For Windows XP visit:http://www.microsoft.com/windowsxp/using/networking/security/winfirewall.mspx. For Windows 7 visit:: http://windows.microsoft.com/en-US/windows7/Turn-Windows-Firewall-on-or-off.
Note
While a computer is connected to the VPN server, it is logically connected to both the internal Columbia/SIPA network and the Internet. For security reasons, each VPN user should disconnect from the VPN server when access to the Columbia/SIPA network is no longer required. Please note that the VPN will discount automatically after 20 minutes of inactivity.