Virtual Private Network (VPN)

You don't need any additional software to set up a VPN connection. All that's required is an existing internet connection plus an active network connection configured with UZH-specific encryption parameters as described in the steps below. As an alternative to manually configuring the VPN connection, if you're running Windows 7, 8, or 10 you can also do it automatically using the set-up program provided by UZH Information Technology.

Windows: VPN Configuration

1.) Open Network and Sharing Center in Control Panel

Open the Network and Sharing Center, for example via one of the following three routes:

  • Windows Start menu > Control Panel > Network and Sharing Center (upper screenshot, Windows 7)
  • Windows Start menu search > Control Panel > Network and Sharing Center (middle screenshot, Windows 7, 8 and 10)
  • Windows taskbar and network symbol > Network and Sharing Center (lower screenshot, Windows 7, 8 and 10)

2.) Select Set up a new connection or network

3.) Select Connect to a workplace

  • Click Next.

4.) Select Use my Internet connection (VPN)

5.) Enter internet address and destination name

  • Internet address: uzhvpn1.uzh.ch or uzhvpn2.uzh.ch.
    (vpn.uzh.ch does not work here because the load balancing of the L2TP client is not supported.)
  • Destination name: Enter any name you choose to describe the VPN connection (e.g. UZH VPN).
  • NOTE: In Windows 7 check Don't connect now; just set it up so I can connect later. This is necessary because additional configurations have to be done once you've completed the wizard.
  • Then click Next (Windows 7) or Create (Windows 8 and 10).

6.) Enter user information and close wizard

Only in Windows 7 and 8:

  • User name: UZH short name
  • Password: VPN password
  • Confirm by clicking Create.

Close the wizard. DO NOT click Connect now at this point; the connection will fail because further configuration has to be done. In Windows 10 you won't be asked for user data, and the wizard will close automatically.

7.) Open (connection) properties

Go back to the Network and Sharing Center (see Point 1), on the left-hand side click Change adapter settings, and right-click the adapter you've just created to select Properties.

8.) Specify type of VPN and authentication

  • Click on the Security tab.
  • Type of VPN: Layer 2 Tunneling Protocol with IPsec (L2TP/IPSec).
  • Authentication: Allow these protocols > Unencrypted password (PAP)
  • Click the Advanced settings button.

9.) Specify advanced settings (group key)

  • Check Use preshared key for authentication.
  • Key (shared secret): group password for the UZH connection profile ALL (see Remote access VPN profiles).
  • Confirm all windows with OK.

Congratulations! You've successfully set-up your VPN connection.

10.) Open VPN connection

  • On the Windows taskbar click on the network symbol (usually bottom right).
  • Select the VPN connection you've just set up (e.g. UZH VPN).
  • Click VPN > Your VPN connection (screenshot right, only in Windows 10).
  • Click Connect.

11.) Establish VPN connection

  • User name: Your UZH short name
  • Password: Your VPN password
  • Click Connect (screenshot left, Windows 7) or OK (screenshot right, Windows 8 and 10).

Please be patient a moment while the data are transferred and the VPN connection is established.

Windows: Automatic VPN Configuration

1.) Download set-up file

  • Download (save) the password-protected set-up file uzhvpn.exe to your PC.
    Authenticate yourself with your UZH short name and WebPass password.

2.) Run set-up file

  • Double-click the file you've downloaded (usually to be found in the Downloads folder) to open it.
  • The connection should be available for all users, not just for your own use.
  • Once the file has run, the new VPN connection (UZH VPN) should appear under the network symbol on your taskbar (see next step).

If security queries prevent you from opening the file, try running it with administrator rights (right-click Run as administrator). You won't need the .exe file for subsequent connections.

3.) Open VPN connection

  • On the Windows taskbar click on the network symbol (usually bottom right).
  • Select the UZH VPN connection that's just been set up automatically.
  • Click VPN > UZH VPN (screenshot right, only in Windows 10).
  • Click Connect

4.) Establish VPN connection

  • User name: Your UZH short name
  • Password: Your VPN password
  • Click the Connect button.

Please be patient a moment while the data are transferred and the VPN connection is established.

 ... Delete VPN connection

If you have to remove the configuration you can delete the VPN connection under adapter settings in the Network and Sharing Center. Either click Delete this connection in the bar running across the top or right-click Delete.



Mac OS X: VPN Configuration

1.) Open System Preferences

  • Open System Preferences via the Apple menu.

2.) Open network preferences

  • Open Network to find the network preferences.

3.) Set up new connection

  • Click the + (plus sign) at the bottom left.
    If it's grayed out, click on the lock underneath to deactivate security.)

4.) Select interface, type, and name

  • Interface: Select VPN.
  • VPN Type: Select Cisco IPSec.
  • Service Name: Enter UZH.
  • Click Create

5.) Specify server address and user data

  • Server Address: vpn.uzh.ch
  • Account Name: Your UZH short name.
  • Password: Your VPN password
  • Check the box Show VPN status in menu bar.
  • Click Authentication Settings....

6.) Enter group key and name

  • Key ("Shared secret"): Our group password.
  • Group Name: Our group name
  • Click OK to confirm.

You'll find the group key and group password here
(log in with UZH short name and WebPass password if required).

7.) Open VPN connection

You can open the VPN connection via network settings (see Points 1 and 2) or via the VPN symbol in the menu bar (see Point 8 below). Authenticate yourself with your VPN user data (UZH short name).

8.) VPN connection status

The VPN connection status is shown in the menu bar (provided you activated the relevant option during configuration).



Linux (Ubuntu): VPN Configuration

1.) Installing Openconnect

  • If it's not preinstalled in more recent operating systems, it's easy to install the VPN client Openconnect via the freely available (graphical) installation program Synaptic Package Manager.
  • Alternatively you can install Openconnect directly from the command line as follows (including dependencies):
    sudo apt-get install network-manager-openconnect
    sudo apt-get install network-manager-openconnect-gnome

2.) Add VPN connection

  • In the menu bar click the Wi-Fi icon > Edit connections.
  • Click Add.
  • From the dropdown list select To Cisco AnyConnect compatible VPN connection (openconnect).
  • Click Create.

You do not have to enter a group password (shared secret). If Cisco Anyconnect... doesn't appear in the list of connection types it means you haven't installed Openconnect in advance as required.

3.) Configure VPN connection

  • In the window that appears enter a Name (e.g. UZH) and
  • uzhvpn1.uzh.ch for Gateway.
  • Without making further changes click Save.

Optionally you can also specify a CA certificate.

4.) Establish VPN connection

  • In the menu bar click the WiFi symbol > VPN -> UZH VPN
  • In the dialogue box that appears click the Connect button.
  • Enter the user name and VPN password and click Login.