skip to content

IT Help and Support

University Information Services
 

Configuring the UIS VPN on Windows 10 and Windows 11 devices

Before you start, you will need to know:

  • your Network Access Token username and password
    – create your token on the UIS Network Access Tokens site and keep the window or tab open, in readiness for when you'll need to copy the username and password.
     
  • If you have been advised to use a Managed VPN, rather than the general University VPN service, you will need the VPN server hostname.  Available VPNs and their server hostnames are listed on the Managed VPN page.
     

Setting up the VPN in Windows 10 and Windows 11

  1. Select Start > Settings to open the 'Settings' panel:

    startsettings
     

  2. ...and select Network & Internet:

    vpnnetwork
     

  3. Select VPN from the list on the left. Add a VPN connection will appear – click on the + sign:

    vpnadd
     

  4. Click in the VPN Provider window, which should add the text Windows (built-in).
  5. In the Connection name box, type Cambridge VPN.
  6. To connect to the main University VPN, in the Server name or address box enter: vpn.uis.cam.ac.uk
    Alternatively, if you are connecting to an Institution's Managed VPN Service (not the main University VPN), you will need to enter its VPN Server hostname here instead (see the list of Managed VPN server hostnames to find this).
  7. Click in the Type of sign-in info box, which should default to 'Username and password':

    vpnscreen

    DO NOT add the username and password at this stage, but ensure that Remember my sign-in info is ticked at the bottom of the screen.
     

  8. Select Save, and this screen will disappear.
  9. You should now see the 'Cambridge VPN' icon; click Change adapter settings beneath it:

    vpncambridge
    In Windows 11 you may not see the "Change adapter settings" option, in which case:

    • Using the Windows 11 search option, type 'Control Panel' (without the quotes)
    • Select Control Panel app from the list that appears
    • In the top right of the Control Panel window change 'View by' to 'Large icons'
    • Click on 'Network and Sharing Center'
    • Click on 'Change adapter settings' on the left hand navigation bar
  10. Right-click on the 'Cambridge VPN' icon (showing as 'Disconnected'), and choose Properties:

    disconnectedvpn
     

  11. Choose the Security tab, and under the heading Type of VPN, select IKEv2 from the drop down list:

    vpneap
     

  12. Under the heading Data encryption, select Require encryption (disconnect if server declines).
  13. Under the heading Authentication select Use Extensible Authentication Protocol (EAP).
  14. Choose the Networking tab, then select Internet Protocol Version 4 (TCP/IPv4), and then click Properties.

    vpn network properties
     

  15. Select Advanced, and then select the IP Settings tab in Advanced TCP/IP Settings box.

    vpn network properties2
     

  16. Make sure that 'Use default gateway on remote network' is checked.

    vpn network properties3
     

  17. Select OK and close the window.
     

Connecting to the VPN in Windows 10

  1. Select Start > Settings.
  2. Select Network & Internet.
  3. Select VPN and then click on the Cambridge VPN icon. A Connect box will appear.
  4. Click Connect.
  5. If you haven't done so already, create a Network Access Token on the UIS Network Access Token site, and keep the window/tab open so you can refer to the username and password.
  6. In the Username box, type your Network Access Token username, usually in the form CRSid+device@cam.ac.uk (e.g. abc123+worklaptop@cam.ac.uk).
  7. In the Password box, type your 16-character Network Access Token password.

    Tip: Don't copy and paste the username or password because this can lead to spaces being added, which will lead to an error.

makeconnection

Hint: Check that the Remember my sign-in info checkbox is still ticked, if you want to log in automatically in future.

  1. Select the OK button. 'Connected' should appear below the Cambridge VPN icon.

Warning: Please be aware that traffic over the VPN is recorded and logged for security purposes
 

Disconnecting from the VPN after use

Click the Disconnect box on the right, below the Cambridge VPN icon.
 

Troubleshooting VPN problems in Windows 10

Continuously connecting

In a recent update to Windows 10 it has been reported that connecting to the VPN using the network icon in the system tray results in the status getting stuck at 'connecting'.

This is a known issue which Microsoft are looking into. The workaround is to connect to the VPN via Settings>Network & Internet>VPN

This should cause the credentials prompt to appear. If the credentials are saved, it should allow you to connect from the system tray icon in future.

IKE authentication error

On the latest builds of Windows 10 it has been reported that the server certificate needs to be installed manually. You'll need to download the UIS VPN certificate or the appropriate certificate if you're using your institution's managed VPN.

IKE service status

If you have trouble connecting to the VPN or the connection just hangs, it may be that the required IKE service has not been started. To check:

  1. Go to Start > Settings.
  2. Search for Administrative Tools. Choose Services from the list:
  3. The IKE and AuthIP service status should be listed as 'Running':

    ikev2

    If it isn't, double-click to highlight the IKE and AuthIP line, and change the Startup type to Automatic.

UIS Service Desk

Phone padded  Service status line: (01223 7)67999
Website  Sign up for SMS/email status alerts
Website  Read major IT incident reports

UIS bITe-size bulletin

A regular newsletter aimed at the University's IT community, highlighting service and project news from UIS.

Sign up >

Latest news

DS-Print: Resolved - difficulties purchasing Common Balance credit

22 November 2022

The problem affecting users topping up their Common Balance for DS-Print using eCredit has been fixed by our external payment provider. Affected users should now be able to add credit to their account and no longer receive an error message after submitting their credit/debit card details.

Exchange Online first contact safety tip enabled

18 November 2022

We enabled a feature in Exchange Online on 11 November to help prevent phishing attacks. A ‘first contact’ safety tip is displayed when you receive an email from someone you don’t usually receive messages from. The tip displays the sender's full email address for a visual verification and a ‘Learn why’ link to a ‘protect...

UIS support data networking and managed services for institute’s sustainable retrofit 

16 November 2022

The Cambridge Institute for Sustainability Leadership has moved from their old offices that were spread around the city into the recently refurbished Entopia Building. The move puts all the Cambridge-based CISL staff and partners under one roof for the first time in the institute’s history. The Entopia Building is also...