Educause Security Discussion mailing list archives
Re: VPN Concentrator replacement
From: "Telfer, Will" <Will_Telfer () BAYLOR EDU>
Date: Tue, 7 May 2019 21:23:02 +0000
We moved from a Cisco appliance/Cisco AnyConnect to Palo Alto Global Protect because we already had the hardware in place. One of the largest advantages was that Global Protect integrated with our Duo implementation so it looked like all the other Duo Authentication screens, where as the Cisco AnyConnect required users to type their second factor of authentication into the 2nd PW box on the login screen. We have not disabled Cisco AnyConnect yet so some users are still using that method, but I have switched to Global Protect & it is easy & very user friendly. Thank You, Will Telfer, M.S. Information Security Analyst Information Technology Services Follow BearAware for Cybersecurity Tips on: Twitter: @BearAware Facebook: facebook.com/BearAware Website: baylor.edu/BearAware [BU_e-signature] From: The EDUCAUSE Security Community Group Listserv <SECURITY () LISTSERV EDUCAUSE EDU> On Behalf Of Akey, Michael Sent: Tuesday, May 7, 2019 3:51 PM To: SECURITY () LISTSERV EDUCAUSE EDU Subject: [SECURITY] VPN Concentrator replacement Hello Security list, At OSU we're looking to replace our aging Cisco ASA devices with a new VPN solution. We wanted to know what other higher-ed institutions are using these days with regards to VPN for end users (not site-to-site/cloud VPN). Our current solution was very over-built for how it was ultimately used and we only have about 100-300 concurrent users on any given day. Any solution we go with must support Duo 2fa - though I'm seeing that nearly any VPN service is supported by way of a RADIUS shim or custom login pages for SSL web VPNs. If you've recently moved to a new VPN solution and are willing to briefly share your experiences with certain vendors/products I would appreciate it. If you know of a good article or existing survey of what other higher-ed institutions use for client VPNs I'd love that too. Thank you, Mike Akey Systems Engineer, IT Infrastructure University Information and Technology | Oregon State University 541-737-4948 | uit.oregonstate.edu
Current thread:
- VPN Concentrator replacement Akey, Michael (May 07)
- Re: VPN Concentrator replacement Telfer, Will (May 07)
- Re: VPN Concentrator replacement Francisco Chavez (May 07)
- Re: VPN Concentrator replacement Bandy, John (May 08)
- Re: VPN Concentrator replacement Pardonek, Jim (May 08)
- Re: VPN Concentrator replacement King, Ronald A. (May 08)
- Re: VPN Concentrator replacement Francisco Chavez (May 07)
- Re: VPN Concentrator replacement Telfer, Will (May 07)
- Re: VPN Concentrator replacement Brian Epstein (May 07)
- Re: VPN Concentrator replacement Mike Wiseman (May 08)
- Re: VPN Concentrator replacement Dugan, Darin D [ITSYS] (May 08)