Click here to load reader

Ipsec VPN User Guide

  • View
    165

  • Download
    1

Embed Size (px)

Text of Ipsec VPN User Guide

ADP IPSEC VPN User Guide

ADP IPSEC VPN User Guide

Current Version Approved by

1.0 Sreenivas Rao Vadalasetty

Effective from

3rd Feb 2010

03/02/2010

Page 1 of 20

ADP IPSEC VPN User Guide

Document Change Control Issue Date 2nd Feb 2010 Version 1.0 Description Intial Version Prepared By Khaja Raheemuddin Approved By Sreenivasarao Vadalasetty

Table of Contents1. Accessing ADP IPSec VPN 2. Closing ADP IPSec VPN 3. FAQ 3.1 3.2 3.3 3.4 3.5My mailbox is not configured on my laptop. Can I configure it myself? What if my laptop does not have latest Antivirus updates? My laptop scan has failed with the error: India ADP Domain Membership Required. What is the problem? What if I do not logon to VPN or connected my laptop to ADP network for 45 days? What if the ADP Hyderabad VPN is down?

4. IT Helpdesk contact

03/02/2010

Page 2 of 20

ADP IPSEC VPN User Guide Accessing ADP IPSec VPN To start the ADP Remote access VPN, please open the VPN client from Start-> Programs -> Cisco systems VPN client -> VPN client or double click on VPN client icon on the desktop and follow below defined steps.

Once you click on the VPN Client, it will open the following window. You would find two Connection Entries ADP Hyderabad VPN and ADP Pune VPN. By default, the Connection Entry ADP Hyderabad VPN is highlighted automatically. Leaving this highlighted, click on Connect button on the toolbar as shown below.

03/02/2010

Page 3 of 20

ADP IPSEC VPN User Guide

Alternatively, you can right click on ADP Hyderabad VPN connection entry and select Connect as shown below.

When you are prompted for credentials in the VPN Client | User Authentication for ADP Hyderabad VPN window, enter your secure id username and password as shown below:

03/02/2010

Page 4 of 20

ADP IPSEC VPN User Guide

Note: Username is your ES login ID Password is Your SecurID PIN + token code. Token code is the number displayed on your SecurID token. If you are using your SecurID token for the first time, please follow the instructions given below: If you are using your SecurID for the first time, you would just need to enter your secure id username and the password is the token code.

03/02/2010

Page 5 of 20

ADP IPSEC VPN User Guide Please set the PIN number: Ex: 1234

Please Re-enter the PIN number.

Enter your secure id username and password where Username is your ES login ID Password is Your SecurID PIN + token code. Token code is the number displayed on the SecurID token. For EX: during earlier process if you gave token code 123456 , please wait for token code to change and enter the new token code 121265.

Once you are successfully authenticated, Cisco NAC Agent scans the laptop to check if your laptop meets ADP Security requirements. If your laptop is found to be compliant,

03/02/2010

Page 6 of 20

ADP IPSEC VPN User Guide you will get to see the following message. It means you are successfully authenticated and connected to ADP ES Network.

Closing ADP IPSEC VPN

If you want to disconnect from VPN, please find the VPN client icon (Lock icon) in the systems tray on the right side of the screen and select Disconnect.

Once you are disconnected from VPN gateway, you would find the lock icon to be unlocked state.

03/02/2010

Page 7 of 20

ADP IPSEC VPN User Guide 3. FAQ 3.1 My mailbox is not configured on my laptop. Can I configure it myself? Yes, you can. Once you are connected to ADP VPN, please follow the instructions given below to configure your outlook profile. 1. Go to Start -> Settings -> Control Panel. Open Mail from the Control panel and click on Show profiles as shown below.

2. Click on Add and enter your profile name and click on OK tab. The name can be anything.

03/02/2010

Page 8 of 20

ADP IPSEC VPN User Guide

3.

Select Add a new e-mail account and click on Next.

4. Select Microsoft Exchange Server and click on Next.

03/02/2010

Page 9 of 20

ADP IPSEC VPN User Guide

5. Enter Microsoft Exchange Server name or IP address and enter your es login name and click on Check Name tab as shown below.

03/02/2010

Page 10 of 20

ADP IPSEC VPN User Guide

6. Once your login name is resolved, please click on Next to finish your outlook profile configuration. Please make sure that Use Cached Exchange Mode is selected for faster access to your email.

03/02/2010

Page 11 of 20

ADP IPSEC VPN User Guide

7. Once you have successfully configured your profile, open the outlook as shown below.

3.2 What if my laptop does not have latest Antivirus updates?

1. If your laptop does not have MacAfee Antivirus signatures of less than 7 days old, you will be denied Full Network Access and your system will get Temporary Network Access where you can update your system with the latest antivirus signatures. 2.

03/02/2010

Page 12 of 20

ADP IPSEC VPN User Guide

. 3. Please click on Repair tab to know the issue with your laptop. You will get the below error, if your laptop is not updated with the latest McAfee Antivirus DAT.

4. Please right click on McAfee icon on System Tray and click on update now to install the latest DATs.

03/02/2010

Page 13 of 20

ADP IPSEC VPN User Guide

Once McAfee update process is successfully completed, Cisco NAC Agent will rescan your laptop. Please click on skip tab to rescan your laptop for MacAfee updates.

If there are no other violations with respect to the ADP Security requirements, your laptop will get Full Network Access to ES network as shown below.

03/02/2010

Page 14 of 20

ADP IPSEC VPN User Guide

3.3 My laptop scan has failed with the error: India ADP Domain Membership Required. What is the problem? 1. As per the ADP India policy all the company managed laptops have to be part of ES domain. However, if you are not connected to office network either through VPN or directly in office for 45 days, the Laptop domain account would get de-activated. Without an active laptop account in domain, you would not be allowed Full Network Access. If your laptop is not part of ES domain or your laptops account in domain is not active, you will not be able to access ADP network.

2.

Please click on Repair tab to know the issue with your laptop.

03/02/2010

Page 15 of 20

ADP IPSEC VPN User Guide

3. We cannot address this Domain Membership issue remotely. You are required to contact IT team along with your laptop. The IT team would then be able to add your laptop to ES domain.

3.4 What happens if I do not logon to VPN or connected my laptop to ADP network for 45 days?

If you are not connected to Office network for more than 45 days, you will not be able to connect to office through VPN. Also, the synchronization of Safeguard and your laptops domain membership will fail. As a result of this, you are likely to see the error Your System is locked at Safeguard level or ADP Domain Membership Required error while connecting to office using VPN. If the problem is limited to Safeguard, we can help you remotely. However, if the issue is related to laptop domain membership, you would be required to contact IT team in person along with your laptop. 3.5 What if the ADP Hyderabad VPN is down? If ADP Hyderabad VPN is not accessible for some reason, you can still connect to ES network via the backup gateway in Pune using the following instructions. When there is a problem with ADP Hyderabad VPN infrastructure, you will see the following error.

03/02/2010

Page 16 of 20

ADP IPSEC VPN User Guide

Please follow below procedure to connect to office using ADP Pune VPN Please right click on ADP Pune VPN and select Connect as shown below.

The rest of the procedure to connect to office remains same as the procedure for connection through Hyderabad VPN, including your SecurID credentials.

03/02/2010

Page 17 of 20

ADP IPSEC VPN User Guide

03/02/2010

Page 18 of 20

ADP IPSEC VPN User Guide 4. IT Helpdesk Contact FIRST LEVEL Contact ADP India IT Helpdesk and raise a trouble ticket Call up +91-40-66378600 SECOND LEVEL Contact the OpsLead in shift in ADP India IT team Call up +91-40-66378600 and ask for OpsLead in the shift THIRD LEVEL Contact Sreenivasa Rao Vadalasetty on +91-40-66378560

03/02/2010

Page 19 of 20

ADP IPSEC VPN User Guide

03/02/2010

Page 20 of 20

Search related