© 2008 by the Rector and Visitors of the University of Virginia.

The information contained on the University of Virginia’s Department of Information Technology and Communication (ITC) website is provided as a public service with the understanding that ITC makes no representations or warranties, either expressed or implied, concerning the accuracy, completeness, reliability or suitability of the information, including warrantees of title, non-infringement of copyright or patent rights of others. These pages are expected to represent the University of Virginia community and the State of Virginia in a professional manner in accordance with the University of Virginia’s Computing Policies.

ITC Network Security Information
Overview
Show My Computer's Network
LSP Technical Information
Frequently Asked Questions
Building List
Presentations
Tested Applications
Rules for Participation
Level 3 Networks
JointVPN Service
More Secure Network VPN
Oracle Special Services VPN
Contact Us

The JointVPN Service

Introduction
Virtual Private Network (VPN) technology is used at several points on the University network to protect computer systems that contain sensitive data. Examples include access to Oracle, remote connections to the UVa More Secure network, remote access to the Clinical Subnet, and other similar services. A VPN encrypts all of the network traffic between your computer and the remote network and provides your computer with access to the protected resources. One issue with VPN technology is that you can only have a single VPN running on your computer at a time. This creates problems for users that need to access multiple protected resources that reside on networks protected by different VPNs (e.g. simultaneous access to Oracle and the Clinical Network).

The JointVPN is a service primarily targeted at users in the academic portions of the Health System. Using a single VPN session the JointVPN service enables users to access some combination of servers and services located on a protected JointVPN network, access to the Clinical Subnet, and access to Oracle and Mercury. Given that its a single VPN session, all of these services can be accessed simultaneously.

The servers and services protected by the JointVPN system contain a wide variety of sensitive and priviledged data. Thus, two factor authentication is required for access to the system. The two factors used are (a) posession of a hardware identity device (a Rainbow iKey) and (b) knowledge of the password for the device.

System Support
The JointVPN is a service that is supported by your department's LSP. Your LSP can contact ITC via the secnet-info@Virginia EDU email alias to request access to the JointVPN, obtain the hardware identity token, and then assist you with the installation of the iKey software and the configuration of the VPN client.

  • LSPs can click here for the iKey software installation and vpn client configuration documentation.
  • Procedural and diagnostic information for LSPs is available here.

As an end user, the critical items for you to remember are to always protect your iKey hardware token, to never share it with anyone, and to remember the password to the device. If you enter the password incorrectly several times in a row, the device will become locked and it will have to be reprogrammed by ITC before it can be used again. ITC can not reset your iKey's passphrase remotely, reprogramming the device is the only option. Please be careful to always remember your password.