VPN (LDAP + TOTP)

Updated

You only need to install the VPN if you need remote access to files on the internal storage cluster or other internal resources.

Bigelow uses OpenVPN to allow employees access to our internal network. The new version of OpenVPN is much faster than before and uses split-tunneling so that your non-Bigelow internet traffic is not routed through the VPN.

OpenVPN authenticates with Google Workplace credentials. Your username should be the first part of your email address (not including "@bigelow.org"). Your password is the same as your email password.

The first time you log into the new VPN server, it will prompt you to set up two-factor authentication. This is separate from the two-factor authentication used with your email account. You will need an app to manage the two-factor authentication code, such as Google Authenticator or 1Password.

What's covered?

  1. Set up 2-factor authentication (when setting up new VPN for the first time)
  2. Install the OpenVPN Connect client
  3. Connect to the VPN

Related articles:

Setup 2-factor authentication

If this is your first time setting up the new VPN server, you will need to configure 2-factor authentication. If you re-install the VPN at a later date or on another computer, you do not need to repeat this step.

  1. Go to https://vpn.bigelow.org
  2. Enter your Bigelow email username (without @bigelow.org) and password
  3. If this is your first time logging into the new server, you will be asked to set up two-factor authentication.
  4. Install and open the Google Authenticator application on your phone. You can use 1Password instead - follow these instructions
  5. Click Get started on the app
  6. Click Scan QR code
  7. Point the phone's camera at the QR code on your computer screen
  8. You should now see a six-digit number that changes every 20 seconds
  9. You will need the number each time you connect to the VPN. This prevents hackers from logging into the VPN using a stolen password.
  10. Enter the six digit code into the text box below the QR code and click Confirm Code

Install the VPN client

  1. Download the macOS or Windows VPN client
  2. Run the installer package.
    If you see this alert on Windows 10, click More info and then Run anyway.

    Windows protected your PC
    Microsoft Defender SmartScreen prevented an unrecognized app from starting. Running this app might put your PC at risk.
  3. In a web browser log into vpn.bigelow.org
  4. Click on "Yourself (user-locked profile)" to download your OpenVPN profile
  5. Click on the profile.ovpn file in your downloads, which should open in the OpenVPN Connect app
  6. Click OK to import the profile
  7. Set the profile name to something descriptive (e.g. Bigelow VPN)
  8. Check the box next to "Save password"
  9. Enter your password
  10. Click the orange CONNECT button
  11. Enter your 2-factor authentication code

Connect to the VPN

If you already have the OpenVPN Connect client instaslled and configured, you can use the following steps to connect to the VPN.
  1. Launch the OpenVPN application
  2. Click the slider next to the OpenVPN profile and enter your 2-factor authentication code from the Google Authenticator app when prompted.

Still need help? Submit a ticket.

How did we do?

Powered by HelpDocs (opens in a new tab)