skip to primary navigationskip to content
 

OS X Yosemite (10.10)

These instructions are intended for configuring the UIS VPN for Macs running OS X 10.10

Note: November 2014

Yosemite currently has a bug preventing the VPN password token from being saved. If you are happy entering the password token each time you make a connection then you can follow the far simpler configuration instructions here

Collecting Network Token

  1. Visit https://tokens.csx.cam.ac.uk
  2. Copy the sixteen character Network Access Token onto the clipboard
Please note your user identifier is crsid@cam.ac.uk
 

Installing and Configuring the Certificate

  1. Download the certificate identity
  2. Open Keychain Access from /Applications/Utilities
  3. Choose File > Import Items... and select the previously downloaded certificate bundle.
    Ensure the destination listed at the bottom is System then click Open.
  4. When prompted type in the username and password of an admin account on your Mac and click Modify Keychain.
    user authentication prompt
  5. When prompted for the password for the certificate enter vpnkeychain prompt
  6. From the list of keychains in the top left select System and then choose Certificates from the Category section
  7. Select the University of Cambridge VPN client certificate entry from the list on the right and click the twist down revealing the Cambridge VPN client identity private key.identity
  8. Double click the client identity key and pick the Access Control pane.
  9. Click the + at the bottom.
  10. In the resulting Open dialogue box type Command + Shift + G to bring up the Go To Folder option.
  11. Type /usr/sbin/ and choose Gogo to
  12. Pick racoon from the /usr/sbin directory and click Add
  13. Click Save Changes and enter the username and password of an admin account and click Modify Keychain
  14. Enter admin credentials again and choose Allow then close the window.
  15. Close Keychain Access.

Configuring the VPN Connection

  1. Open System Preferences and choose Network.
  2. Click the + at the bottom of the list of interfaces and choose VPN from the list.
  3. From the VPN Type list pick Cisco IPSec.
  4. Name the service "University Information Services VPN" and click Create.
  5. Select the Information Services VPN entry.
  6. Set the Server Address to vpn.uis.cam.ac.uk
  7. Set the Account Name to crsid@cam.ac.uk e.g. spqr1@cam.ac.uk
  8. Set the password to the 16 character Network Token retrieved earlier.
  9. Click Authentication Settings and choose the Certificate radio button.
  10. Pick Select and choose the University VPN Service client certificate then click Continue.
  11. Click OK to finish configuration.
  12. Tick Show VPN Configuration in menu bar then click Apply to finish.

Using the VPN connection

To start the VPN connection:

  • Either choose Connect Information Services VPN from the VPN menu bar item
  • Or choose Connect from the interface in the Networks System Preference.

When you have finished using the VPN choose Disconnect from either of the locations listed above.