Educause Security Discussion mailing list archives
VPN Security
From: Kevin Reedy <KReedy () EXCELSIOR EDU>
Date: Fri, 5 Jun 2015 11:34:38 -0400
Hi All, We are looking into rolling out VPN access in addition to our more standard Citrix application publication for certain users that have more specialized needs that can't be easily met by application publishing. We have many options on how to secure client VPNs, and will be using two factor authentication. I'd like to do more, if you are actively using software VPN for employees with any of the following I'd love hear how it is working for you: Only authorized endpoints. Users would have to make the request and get the device registered with IT in order to use it to access VPN. Only institutional devices, similar to above, but only college devices would be allowed to connect. We are not BYOD and don't have the infrastructure in place to verify AV etc on other devices. Using firewall rules to limits services - this may be the most work of them all, but it allows us to create pretty granular control over who can access what. If you are using none of the above what sort of issues have you encountered? Infected devices on the VPN, etc? Thanks in advance! -Kevin Kevin Reedy Executive Director, Information Security Excelsior College (518) 464-8720 This message and any attachments contain confidential Excelsior College information intended for the specific individual and purpose. If you are not the intended recipient, you should notify the College and delete this message. Any disclosure, copying, distribution or inappropriate use of this message is strictly prohibited.
Current thread:
- Phishing at U-M Donald Welch (Jun 05)
- Re: Phishing at U-M Joel Anderson (Jun 05)
- Re: Phishing at U-M William Rhee (Jun 05)
- Re: Phishing at U-M Joel Anderson (Jun 05)
- VPN Security Kevin Reedy (Jun 05)
- Re: VPN Security Rossella Mariotti-Jones (Jun 05)
- Re: Phishing at U-M Frank Barton (Jun 05)
- Re: Phishing at U-M Joel Anderson (Jun 07)
- Re: Phishing at U-M William Rhee (Jun 05)
- Re: Phishing at U-M Joel Anderson (Jun 05)