How do I download and install the UNC Charlotte VPN on my Linux computer?

The installation should be similar on various Linux distributions, but experiences may vary.

These instructions require that your user account has sudo access.

  1. 1. Go to vpn.uncc.edu to download the VPN software
      a. Click "Linux 64bit"
      b. Download the shell script - cisco-secure-client-linux64-5.0.03072-core-vpn-webdeploy-k9.sh
  2. Copy the script to /tmp (assumes the script is in the ~/Downloads directory)

    1. Run...

      cp ~/Downloads/cisco-secure-client-linux64-5.0.03072-core-vpn-webdeploy-k9.sh  /tmp

  3. Run the downloaded script as root

    1. Become the root user. Run and if prompted, provide username/password information to gain superuser permissions...

      sudo -i

    2. Set the umask...

      umask 022

    3. Run the VPN install script... 

      sh /tmp/cisco-secure-client-linux64-5.0.03072-core-vpn-webdeploy-k9.sh

    4. Exit sudo...

      exit
  4. When script has completed, check that there are files in /opt/cisco - there should be two directories: anyconnect/ and vpn/

  5. Run the VPN Cisco Secure Client software

    The graphical interface for the VPN Cisco Secure Client software must be used - the command line version will not work because of the Duo Multi-factor authentication requirement.

    1. Run the following in a terminal or the Cisco Secure Client program from your GUI application menu

      /opt/cisco/Secure Client/bin/vpnui
    2. The application should open - In the Connect to field, type vpn.uncc.edu and click Connect

    3. A window will open to enter your NinerNET credentials followed by Duo authentication

    4. To disconnect from the VPN, click the Disconnect button in vpnui

You may get an error that says "Secure Client cannot confirm it is connected to your secure gateway" when you try to connect to the VPN in Step #4. This happens because the Cisco Secure Client maintains its own list of certificates to authenticate remote servers - it does not use the system's certificates. The Cisco Secure Client certificate database is in /opt/.cisco/certicates/ca

It is likely that your installation of Linux has the right certificates already because they are frequently included with web browsers and other tools.

To remediate, copy the USERTrust certificates by doing:

sudo cp /etc/ssl/certs/USERTrust_* /opt/.cisco/certificates/ca/

Retry Step #4

Print Article