Virtual Private Network (VPN) Policy

I. Purpose 

The purpose of this policy is to provide guidelines to remotely access resources hosted at Kenyon College using Virtual Private Network (VPN) client.

II. Scope

This policy applies to all Kenyon College employees utilizing VPN to remotely access the Kenyon College network. This policy also applies to implementations and use of VPN that are directed through Kenyon College VPN application.

III. Policy

Kenyon College employees may utilize the benefits of VPN, which is a "user managed" service. This means that the user is responsible for selecting an Internet Service Provider (ISP), coordinating installation, installing any required software, and paying associated fees. Additionally,

  • It is the responsibility of employees with VPN privileges to ensure that unauthorized users are not allowed access to Kenyon College internal networks.
  • VPN use is to be controlled using a one-time password authentication, every time you want to remotely connect to the Kenyon College Network.
  • VPN users will be automatically disconnected from Kenyon College 's network after 2 hours of inactivity. The user must then logon again to reconnect to the network.
  • When actively connected to the college network, VPN will force all traffic to and from the PC over the VPN tunnel: all other traffic will be dropped.
  • Dual (split) tunneling is NOT permitted; only one network connection is allowed.
  • VPN gateways will be set up and managed by LBIS Enterprise Infrastructure group.
  • All computers connected to Kenyon College internal networks via VPN must use an anti-virus software, with most current definitions.  All VPN users must have Kenyon provided Symantec Endpoint Protection anti-virus installed on their machines.
  • Only Kenyon College approved VPN clients may be used.
  • By using VPN technology, users must understand that they are an extension of Kenyon College 's network, and as such are subject to the same rules and regulations as detailed in the Library and Computer usage policy.