University of Illinois System

Remote Access and VPN

Service Description

The Remote Access and VPN service option is an IP-based offering enabling customers to create an encrypted tunnel with an endpoint on a University of Illinois trusted network. Traffic from the client traverses the encrypted tunnel to a trusted network segment to securely utilize and administer System Office services from non-University locations.

An Active Directory account and Duo 2FA are required in order to authenticate. The VPN service enables support of remote access communication via any standards based IKEv2 or SSTP client. VPN service is a solution for System Office customers interested in utilizing standards based encryption technology as the foundation for secure data communications.

Service implementation and support includes:

  • Consultation regarding service options and configurations
  • All required activities to complete service installation (workstation configurations are supported in partnership with desktop support in Technology Services at UIUC and Technology Solutions at UIC)
  • A managed service that includes:
    • 24/7 centralized monitoring and management via AITS Linux Support and the AITS Service Desk
    • Redundant VPN service provided by AITSRAS1 and AITSRAS2 housed in geographically diverse data centers
  • Service options include:
    • Configuration of the Mac/Linux/Windows native VPN client (IKEv2 or SSTP)

Hours of Availability

This service is available to customers 24/7, excluding planned outages, maintenance windows and unavoidable events. Maintenance windows are used only when needed for planned changes that have gone through the AITS Change Control Process. In addition to the standard AITS maintenance windows, site-specific and service-specific changes may be coordinated with customers at non-standard times.

Standard maintenance windows are defined as:

  • 6 a.m. to 12 p.m. each Sunday when application usage is at its lowest
  • After 5 p.m. every Tuesday and Thursday, unless business needs to make a change during business hours
  • The second Wednesday of the month from 5 p.m. to 8 p.m. for patching Microsoft servers
  • 6 a.m. to 6 p.m. four Sundays a year for routine Windows and Linux maintenance

Customer Responsibilities

How Do We Charge?

This service is offered as part of the Information Assurance set of services. Pricing and the base Service Level Agreement of the Server Support sete of services is available.

Major Cost Drivers:

  • Maintenance and support of data center VPN server and equipment
  • Indirect cost of the underlying TCP/IP network (router, DNS, switch ports, firewall, address space)