Junos Pulse Secure client (>= 5.3) (installed: 5.3-3-Build553) * Requirements when using Junos Pulse Secure Client (GUI): * Requirements when using OpenConnect (CLI): Set its permission accordingly (by calling chmod go-rwx ~/.netrc). In ~/.netrc file, use the following format:įor security, the ~/.netrc file should be readable only by
In ~/.netrc, then you will be prompted to enter them. If user credentials (-user and -pwd) are neither specified nor given speed= Control speed of -gui interactions (default is 1.0)Īny other options are passed to Pulse Secure CLI as is (only -no-gui). no-gui Connect to VPN via Pulse Secure CLI (default) UCSF_VPN_EXTRAS Additional arguments passed to OpenConnectĬommands and Options for Pulse Security Client only (-method=pulse):Ĭlose-gui Close the Pulse Secure GUI (and any VPN connections)
UCSF_VPN_PING_SERVER Ping server to validate internet (default: 9.9.9.9)
UCSF_VPN_VALIDATE Default value for -validate UCSF_VPN_SERVER Default value for -server UCSF_VPN_PROTOCOL Default value for -protocol UCSF_VPN_METHOD Default value for -method UCSF_VPN_TOKEN=prompt ucsf-vpn start -user=alice -pwd=secrets validate= Either 'ipinfo', 'pid', or 'pid,ipinfo' url= VPN URL (default is -method= Either 'openconnect' (default) or 'pulse' realm= VPN realm (default is 'Dual-Factor Pulse Clients') user= UCSF Active Directory ID (username) 44-letter YubiKey token ("press YubiKey") 'phone' (receive phone call and "press any key"), 'push' ("approve and confirm" in Duo app default), 'prompt' (user is prompted to enter the token), token= One-time two-factor authentication (2FA) token or method: Troubleshoot Scan log file for errors (only for '-method=pulse') With a properly setup ~/.netrc entry, you can connect to the UCSF VPN using:Ĭonnect to and Disconnect from the UCSF VPNĭetails Display connection details in JSON format If you have problems connecting to the VPN using ucsf-vpn, make sure you use the correct username and password by logging in via the UCSF VPN web proxy.Īlternatively to command-line options, the username and password can also be specified in file ~/.netrc (or the file that environment variable NETRC specifies). OK: Public IP information: ip=128.218.43.42, hostname=, org=AS5653 University of California San Francisco OK: OpenConnect status: 'openconnect ' process running (PID=14549) WARNING: This action ( 'ucsf-vpn start ') requires administrative ( "sudo ") rights.Įnter the password for your account ( 'alice84 ') on your local computer ( 'alice-laptop '):Įnter your UCSF Active Directory password: Įnter 'push ' (default), 'phone ', 'sms ', a 6 or 7 digit Duo token, or press your YubiKey: $ ucsf-vpn start -user=alice -token=prompt
0 kommentar(er)
