ipsec vpn user guide

ADP IPSEC VPN User Guide


Current Version 1.0

Approved by Sreenivas Rao Vadalasetty

Effective from 3rd Feb 2010

03/02/2010 of 19


Document Change Control

Issue Date Version Description Prepared By Approved By

2nd Feb 2010 1.0 Intial Version Khaja Raheemuddin

Sreenivasarao Vadalasetty

Table of Contents

1. Accessing ADP IPSec VPN

2. Closing ADP IPSec VPN

3. FAQ

3.1 My mailbox is not configured on my laptop. Can I configure it myself?

3.2 What if my laptop does not have latest Antivirus updates?

3.3 My laptop scan has failed with the error: “India – ADP Domain Membership

Required”. What is the problem?

3.4 What if I do not logon to VPN or connected my laptop to ADP network for 45

days?

3.5 What if the ADP Hyderabad VPN is down?

4. IT Helpdesk contact

03/02/2010 of 19

ADP IPSEC VPN User Guide1. Accessing ADP IPSec VPN

To start the ADP Remote access VPN, please open the “VPN client” from Start-> Programs -> Cisco systems VPN client -> VPN client or double click on VPN client icon on the desktop and follow below defined steps.

Once you click on the VPN Client, it will open the following window. You would find two Connection Entries “ADP Hyderabad VPN” and “ADP Pune VPN”. By default, the Connection Entry “ADP Hyderabad VPN” is highlighted automatically. Leaving this highlighted, click on Connect button on the toolbar as shown below.

03/02/2010 of 19

ADP IPSEC VPN User GuideAlternatively, you can right click on “ADP Hyderabad VPN” connection entry and select Connect as shown below.

When you are prompted for credentials in the “VPN Client | User Authentication for ADP Hyderabad VPN” window, enter your secure id ‘username’ and password as shown below:

03/02/2010 of 19


Note:

Username is your ES login IDPassword is Your SecurID PIN + token code. Token code is the number displayed on your SecurID token.

If you are using your SecurID token for the first time, please follow the instructions given below:

If you are using your SecurID for the first time, you would just need to enter your secure id ‘username’ and the password is the token code.

Please set the PIN number: Ex: 1234

Please Re-enter the PIN number.

Enter your secure id ‘username’ and password where

03/02/2010 of 19

ADP IPSEC VPN User GuideUsername is your ES login IDPassword is Your SecurID PIN + token code. Token code is the number displayed on the SecurID token.

For EX: during earlier process if you gave token code “123456” , please wait for token code to change and enter the new token code “121265”.

Once you are successfully authenticated, Cisco NAC Agent scans the laptop to check if your laptop meets ADP Security requirements. If your laptop is found to be compliant, you will get to see the following message. It means you are successfully authenticated and connected to ADP ES Network.

2. Closing ADP IPSEC VPN

If you want to disconnect from VPN, please find the VPN client icon (Lock icon) in the system’s tray on the right side of the screen and select Disconnect.

03/02/2010 of 19


Once you are disconnected from VPN gateway, you would find the lock icon to be unlocked state.

3. FAQ

3.1 My mailbox is not configured on my laptop. Can I configure it myself?

Yes, you can. Once you are connected to ADP VPN, please follow the instructions given below to configure your outlook profile.

1. Go to Start -> Settings -> Control Panel. Open “Mail” from the Control panel and click on Show profiles as shown below.

03/02/2010 of 19


2. Click on Add and enter your profile name and click on OK tab. The name can be anything.

3. Select “Add a new e-mail account and click on Next.

03/02/2010 of 19


4. Select “Microsoft Exchange Server” and click on Next.

5. Enter Microsoft Exchange Server name or IP address and enter your es login name and click on “Check Name” tab as shown below.

03/02/2010 of 19


6. Once your login name is resolved, please click on Next to finish your outlook profile configuration. Please make sure that “Use Cached Exchange Mode” is selected for faster access to your email.

03/02/2010 of 19


7. Once you have successfully configured your profile, open the “outlook” as shown below.

03/02/2010 of 19


3.2 What if my laptop does not have latest Antivirus updates?

1. If your laptop does not have MacAfee Antivirus signatures of less than 7 days old, you will be denied “Full Network Access” and your system will get “Temporary Network Access” where you can update your system with the latest antivirus signatures.

2.

.

3. Please click on “Repair” tab to know the issue with your laptop.

03/02/2010 of 19

ADP IPSEC VPN User GuideYou will get the below error, if your laptop is not updated with the latest McAfee Antivirus DAT.

4. Please right click on McAfee icon on System Tray and click on update now to install the latest DATs.

Once McAfee update process is successfully completed, Cisco NAC Agent will rescan your laptop.

Please click on skip tab to rescan your laptop for MacAfee updates.

03/02/2010 of 19


If there are no other violations with respect to the ADP Security requirements, your laptop will get “Full Network Access” to ES network as shown below.

3.3 My laptop scan has failed with the error: “India – ADP Domain Membership Required”. What is the problem?

1. As per the ADP India policy all the company managed laptops have to be part of ES domain. However, if you are not connected to office network either through VPN or directly in office for 45 days, the Laptop domain account would get de-activated. Without an active laptop account in domain, you would not be allowed “Full Network Access”.

If your laptop is not part of ES domain or your laptop’s account in domain is not active, you will not be able to access ADP network.

03/02/2010 of 19


2. Please click on “Repair” tab to know the issue with your laptop.

3. We cannot address this “Domain Membership” issue remotely. You are required to contact IT team along with your laptop. The IT team would then be able to add your laptop to ES domain.

3.4 What happens if I do not logon to VPN or connected my laptop to ADP network for 45 days?

If you are not connected to Office network for more than 45 days, you will not be able to connect to office through VPN. Also, the synchronization of Safeguard and your laptop’s domain membership will fail. As a result of this, you are likely to see the error “Your System is locked” at Safeguard level or “ADP Domain Membership Required” error while connecting to office using VPN.

03/02/2010 of 19


If the problem is limited to Safeguard, we can help you remotely. However, if the issue is related to laptop domain membership, you would be required to contact IT team in person along with your laptop.

3.5 What if the ADP Hyderabad VPN is down?

If “ADP Hyderabad VPN” is not accessible for some reason, you can still connect to ES network via the backup gateway in Pune using the following instructions.

When there is a problem with “ADP Hyderabad VPN” infrastructure, you will see the following error.

Please follow below procedure to connect to office using “ADP Pune VPN”

Please right click on “ADP Pune VPN” and select Connect as shown below.

The rest of the procedure to connect to office remains same as the procedure for connection through Hyderabad VPN, including your SecurID credentials.

03/02/2010 of 19


03/02/2010 of 19

ADP IPSEC VPN User Guide4. IT Helpdesk Contact

FIRST LEVEL • Contact ADP India IT Helpdesk and raise a trouble ticket

Call up +91-40-66378600

SECOND LEVEL • Contact the OpsLead in shift in ADP India IT team

Call up +91-40-66378600 and ask for OpsLead in the shift THIRD LEVEL • Contact Sreenivasa Rao Vadalasetty on +91-40-66378560

03/02/2010 of 19


03/02/2010 of 19

ipsec vpn user guide

Documents