Versions Compared

Old Version 2

changes.mady.by.user Kalevi Lehto

Saved on

compared with

New Version 3

changes.mady.by.user Kalevi Lehto

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
  1. The VPN remote connection is available to all Metropolia users. It is needed to connect to Metropolia's internal services from outside. Internal services include Financial and Administrative Services, Koulutuskalenteri and instruction supporting project servers, educloud, and laboratory systems. VPN access to internal services is determined by user role and terminal device.

...

  1. Start /Applications/Cisco/Cisco AnyConnect Secure Mobility Client.app.





  2. Select a VPN connection profile

    a) Mac computer in Metropolia maintenance
    Under In the "Ready to connect" text, in the drop-down menu, select "Metropolia -StaffManaged or, on student computers, StaffManaged".
    If the computer is used by students, select "Metropolia-StudentManaged".


    On a Mac computer

    After selecting the address, click on Connect.

    b) A Mac computer that is not maintained by Metropolia or , if the address field is blank, enter type in the field the connection address:
    vpn.metropolia.fi.



    After selecting the address, click on Connect.

...

4. When the connection is established the connection window looks like this:



The AnyConnect VPN -yhteyden tilan voi myös todeta ylävalikon pienestä AnyConnect-kuvakkeestaconnection status is shown also in the AnyConnect icon in the upper menu bar.

When the connection works a lock is shown in the icon:

...

To close the VPN connection, stop the VPN client.

The VPN connection has a time limit after which an unsed connection is closed.

The connection is also automatically closed then the computer shuts down or goes to sleep.

...

Devices in Metropolia maintenance

Metropolian ylläpitämillä laitteilla on käytettävissä käyttäjän roolin mukaisesti pääsääntöisesti samat palvelut kuin henkilökunnan työasemilla ja atk-luokkien työasemilla. Tietoturvasyistä levypalvelut ja monet muut sisäiset resurssit ovat käytettävissä etänä vain Metropolian omistamilla laitteilla, joiden tietoturvasta vastaa Metropolian tietohallintoIn general, all the same services that are available on staff workstations and PC classroom workstations, are available also on devices that are in Metropolia maintenance. For information security reasons, network drives and many internal resources are available remotely only on devices that are owned by Metropolia and the information security of which is administered by Metropolia IT Services.

The users' own devices

Information security on users' own devices is not controlled in any way. Because of this, only restricted VPN services are available for all users on their own devices. Primarily users can access staff's and students' browser based services from their own devices. Access to services that requires database connections, licenses, and other internal resources are considered on a case-by-case basis because of the information security risk that poorly maintained devices might create.

...

Div
classbbox

VPN restrictions

Use a VPN connection only when necessary and prudent to ensure sufficient capacity!

Do not use a VPN connection while using online learning platforms, video conferencing services, or watching videos.

Services available remotely via VPN may be temporarily or permanently restricted when security or availability of critical services so require. Metropolia's VPN connection is not designed for crisis situations.

OMA, Moodle, Zoom, Teams, or Skype for Business don't need a VPN connection to work.

Notice: When traveling abroad, remember to always open VPN when using network connections, including fixed networks and password protected networks. VPN protects the connection with encryption which prevents outsiders from reading the network data. Make sure before your trip that VPN works.