VPN Portal

VPN makes the secured connection to the university network possible from outside and therefore it is needed when one is working remotely. When you need the VPN connection, use the VPN client if it is possible. Use connection through the VPN portal page only when the VPN client is not available. The suitable alternative of VPN connections is worth finding already beforehand and making the required preparations especially before the trip abroad.

The advantage of the VPN portal into use of VPN client is the fact that you get the protected connection with WWW browser without any application installations. The use of the systems and remote desktops of the university is possible using a strong authentication but however, limited. If your intention is to use the systems from outside the network, it will be recommended to use the VPN client instead of the portal, read the page: OpenVPN and the profile.

VPN Secure Access Portal is a secured connection to the university network through a web browser. In the portal window, you can use common bookmarks or write on the Browse field the web address wanted by you. You can also create your own bookmarks.

When logging into portal, you decide if you need light or strong authentication method. The strong authentication is required if your intention is to use administrative systems of the university. In this case, choose remote desktop connection, Lippu for instance, in VPN Portal, and choose a strong authentication in VPN login phase. This practice is recommended to the Mac and Linux users also in the university network.

Link: VPN Portal


a) Light authentication

Choose your light authentication method in Login as field when using VPN Portal:

  • Staff (Password): staff, login with account and password
  • Student (Password): student, login with account and password

Light authentication means, that you use your account and password to login in VPN Portal. You can access your home directory and utilize services and pages which are limited to use only in the university network, e.g. MOT-dictionaries.

b) Strong authentication

The strong authentication is required when using administrative systems outside the University network. In the strong identification a certificate or passcode is always needed in addition to the user name and the password. The possibilities to use of the VPN connection will also be more versatile than to be used with light authentication.

The VPN clients use only the strong authentication, and in the the newest clients the strong authentication is automatically taken care of by the eduVPN profile whithout any choices. In the VPN Portal the strong authentication is optional. 

In VPN portal or in older VPN clients, choose your strong authentication method:

  • Staff (SMS): staff, one-time passcode in text message
  • Staff (OTP): staff, one-time passcode from OTP application
  • Student (SMS): student, one-time passcode in text message

Following methods are available only in the older VPN clients of UNIV laptops of the staff:

  • UNIV-VPN staff, the PKI certificate saved in the device is used automatically
  • Secondary VPN: staff; one-time passcode from a SMS or OTP or RSA SecurId

EduVPN profile is a personal profile, which is created in the service: Activate eduVPN. After that, it is brought to a VPN client in which case it corresponds to the certificate of the strong identification.

PKI certificate (Public Key Infrastructure) is saved in the device (Note: only in UNIV laptops) and only user account and password are asked in the login phase. Read the guide: Utilising of the PKI in UNIV laptop of staff

SMS passcode is a one-time passcode which you have to type in the login phase after typing your user account and password. The code will be sent automatically into your mobile phone as a SMS provided that mobile phone number has been saved in the service. Check or set the mobile number in the service: VPN Mobile Phone Number | guide

OTP application (One Time Password) shows in the mobile device a one-time passcode which in addition to a username and password you will type in the VPN login phase. The application (Microsoft Authenticator) is installed from the store and will be activated before the first usage time. It is recommended alternative to those staff members who do not have the PKI alternative and who travel abroad a lot. Activate the OTP before first usage in the service: Activate VPN OTP for sa.oulu.fi. Guide pages: e_Identification, OTP activation and use in mobile.

Read more: student account, staff account, password, home directory

Last updated: 21.4.2021