Accessibility Skip to Global Navigation Skip to Local Navigation Skip to Content Skip to Search Skip to Site Map Menu

Remote Access Procedure (including VPN)

Category Information & Communications Technology
Type Procedure
Approved by Vice-Chancellor August 2009
Date Procedure Took Effect 27 August 2009
Last Approved Revision 30 June 2011
Sponsor Director Information Technology Services
Responsible Officer Manager Information Security
Review Date 1 June 2013

Purpose

This procedure must be followed to ensure the integrity of the University’s network and to protect all users of University systems.

Systems for connecting remote users to a network often provide the user with many of the same privileges as those connected directly to the network. This requires that the remote computer must adhere to University of Otago Information Technology Policies, Procedures and Guidelines, and be managed in a way that is compatible with standards maintained by other networked computers.

Organisational Scope

This Procedure applies University-wide.

Definitions

ITS – Information Technology Services

VPN – Virtual Private Network

Policy Content

1. VPN Service

Remote access to the University network should normally be made through the University VPN service. This service is available to authorised users.

The VPN service is considered an extension of the University Network. As such, systems being used from off-campus locations to connect to the VPN service shall be considered part of the University Network. University of Otago Computer Regulations and Policies shall therefore apply.

2. Use of VPN Service

Use of the VPN service should only occur from trusted computer systems. This excludes Internet cafes and other such public access computers.

In particular:

(a) The University VPN service is managed and operated by ITS as part of the overall University network infrastructure.

(b) Access to the University VPN service shall be via authenticated login utilising the University Authentication System.

(c) Access shall only be granted for approved users.

(d) Users of the University VPN service are bound by University Computer Regulation and Policies. These include, but are not limited to the policies listed as related policies in the following section.

(e) VPN users must not allow other users to access University devices or systems with their account, nor allow other users to route traffic through their VPN connection.

Related Policies, Procedures and Forms