About the IU VPN

On this page:

Overview
VPN at IU
Connect to the VPN
IU Groups VPN

Overview

A virtual private network (VPN) allows you to temporarily create or join a private network across an existing public network by creating an encrypted tunnel between two hosts. The encryption protects the data your computer or mobile device transmits and receives over the internet, enabling secure remote access to restricted online resources.

Many public wireless networks (such as those provided by hotels and restaurants) are not encrypted, leaving transmitted data unprotected and vulnerable to electronic surveillance. Even data originating from a secure network (for example, one provided by your employer or school) may be vulnerable if they are being transmitted to another secure network over the public internet. To prevent data from being intercepted (especially confidential financial data, or data protected by federal laws, such as FERPA and HIPAA data), businesses, government offices, universities, and other institutions use VPN systems to encrypt data transmitted between their secure networks and remote users.

VPN at IU

At Indiana University, UITS delivers a centrally managed, fault-tolerant SSL VPN service for use by all IU campuses.

Establishing an IU VPN connection creates a secure tunnel between your off-campus computer or mobile device and the IU network, allowing you to access online services and resources that are configured to refuse connections from outside the IU network (such as IU Print queues, certain library databases, and most network storage devices). Also, you can use an IU VPN connection or IUanyWare to make a remote desktop connection from off campus.

Note:

Whenever you are off campus and cannot connect to an IU service, connect to the IU VPN to check whether that fixes the problem.

For more about what traffic is encrypted with IU VPN connections, see VPN split tunneling at IU.

Connect to the VPN

For the greatest reliability across the widest range of platforms and network configurations, UITS recommends using the Pulse Secure SSL VPN client (produced by Pulse Secure, LLC), where available, to connect to IU's SSL VPN. The Pulse Secure client is the official replacement for the Junos Pulse client previously used at IU.

For instructions for connecting to IU's SSL VPN, see:

Windows or macOS: Connect to IU's SSL VPN using Pulse Secure for Windows or macOS
iOS: Connect to IU's SSL VPN with Pulse Secure on an iOS device
Android mobile: Connect to IU's SSL VPN with Pulse Secure from an Android mobile device
Chromebook: Connect to IU's SSL VPN with Pulse Secure from a Chromebook
Linux:
- Connect to IU's SSL VPN using Pulse Secure on a 32- or 64-bit Linux workstation
- Connect to IU's SSL VPN using OpenConnect on a 64-bit Linux workstation

Notes:

Important:

Use the IU VPN only under one of these conditions:
- If you are trying to access a service you can't get to another way.
- If your IT Pro has told you that you need to use it.
Generally, you won't need to use the VPN if you are a student. For example, you don't need a VPN connection to:
- Use learning tools, such as Canvas, Zoom, or Kaltura.
- Read your IU email over the web.
- Work with your files in Microsoft OneDrive at IU or Google at IU My Drive.
If you have difficulty with the VPN: Try using IUanyWare (doesn't require a VPN connection).
For example, you can use IUanyWare's Remote Desktop Connection app to remote into a device on campus. Additionally, IUanyWare's Chrome browser allows you to access sites as if you were on campus.

In IUanyWare, search the available apps to find what may be helpful.
On the IU network: You cannot connect to the VPN, as it is for off-campus use only.
If you receive a 1329 error when attempting to connect to the VPN, try connecting using a non-eduroam or non-IU Secure connection.

To ensure accountability of network communication, the University Information Policy Office prohibits group accounts from connecting to IU's SSL VPN. To make a VPN connection, you must log in using your personal IU username and passphrase.
For general VPN usage, you can connect one device at a time. If you connect a second device while you already have a connection running to another device, you'll see a prompt asking whether you want to maintain the existing connection and cancel the new connection request, or break the existing connection and establish a new connection. Groups VPN users can connect two devices concurrently.

If you have questions or need help, contact your campus Support Center.

IU Groups VPN

IU's Groups VPN provides dedicated VPN IP space for teams needing to restrict remote access to their internal administrative environments.

Access permissions for Groups VPN IP ranges are controlled with Active Directory security groups. All users must authenticate via Two-Step Login (Duo). VPN IP addresses from a team's dedicated IP space are assigned only to users who are members of the appropriate AD security group. Administrators of AD security groups associated with Groups VPN ranges are responsible for ensuring that users within those AD groups are current.

For more, see Use the IU Groups VPN to restrict remote access to your team's administrative resources.

Note:

The UITS Campus Network Engineering team periodically reviews the use of Groups VPN ranges and may remove ranges that are no longer needed.