Procedure for Connecting to OIL VPN Contents Introduction... 1 Pre-requisites... 1 How to Connect to OIL VPN... 1 Access using Checkpoint remote access client... 2 Note for macos users... 6 Accessing using Web VPN... 7 Access using Check Point Capsule VPN app... 10 Introduction This document describes the procedure to connect to OIL s corporate network remotely using public network like Internet to access OIL s internal IT resources. There are two groups of VPN users in OIL: 1. Users with authorization to access servers and other IT infrastructure: This facility is available to selective users based on requirement. 2. Users with authorization to access OIL s IT applications like SAP, OILWEB, OILEP, E- Sampatti, OILMAIL, PMS, E-Audit, FTS etc. This facility is available to all Executive employees by default. Other users may be extended the facility on need basis. Pre-requisites 1. You must have a valid logon id in OIL s Active Directory. 2. You must have permission to use OIL Remote Access VPN facility (see above). To request for permission, please send a mail to network2@oilindia.in justifying the requirement. How to Connect to OIL VPN OIL VPN is accessible from different devices and OSes as per the table below: OS Windows Mac OS Linux Android ios Supported client 1. Checkpoint remote access client 2. Web VPN 1. Checkpoint remote access client 2. Web VPN 1. Web VPN 1. Check Point Capsule VPN app 2. Check Point Capsule VPN app Restricted Page 1 of 10
Access using Checkpoint remote access client 1. Download the remote access client from the following links: Windows https://goo.gl/gjgp14 Mac OS https://goo.gl/ssjtqa 2. Install the client on your system. When prompted for product to install, choose Endpoint Security VPN as shown below and follow the installation wizard. You need to restart your system after completion of installation. 3. After restart, launch the Checkpoint client. 4. A prompt will appear to configure the VPN site. Click on Yes Restricted Page 2 of 10
5. Follow the Site wizard to configure the VPN connection: 6. Fill in the server address as vpn.oilindia.in 7. Trust and continue the certificate: Restricted Page 3 of 10
8. Select the login option as standard: 9. Select the authentication method as Username and Password 10. Click Finish to complete the site configuration: 11. Click on VPN Option Restricted Page 4 of 10
12. Modify the Always Connect option so that you are not connected to OIL VPN every time system is rebooted. Click on Properties -> Settings, and deselect the option : Enable Always-Connect 13. Connect to the OIL VPN by clicking on the Connect. A prompt will appear for Username and Password. Please provide your OIL AD account username and password. 14. You may also check the connection status, by clicking the Checkpoint client tray icon: 15. You can disconnect from the OIL VPN network by clicking the Disconnect Restricted Page 5 of 10
Note for macos users Installation may fail on recent version of macos (macos High Sierra 10.13 or higher) due to need for user approval for kernel extension loading. (See: https://developer.apple.com/library/content/technotes/tn2459/_index.html) You will need to allow the VPN client software in System Preferences > Security & Privacy as shown below and re-run the installer: Restricted Page 6 of 10
Accessing using Web VPN 1. For using Web VPN, you must ensure that you have Java JRE installed in the system. Ensure you have latest version of Java to avoid any issues with connection to VPN. To check details of java version installed in the endpoint, be guided as per the following link: https://www.java.com/en/download/help/version_manual.xml 2. Browse to URL: https://vpn.oilindia.in 3. Enter your Active Directory Username and Password: Restricted Page 7 of 10
4. On successful logon to the VPN Site, you will see the option to connect to OIL s Network: 5. First time users will receive the popup to install web VPN client: 6. Download and install the Check Point Mobile agent. While installing, accept request to install certificate from Check Point Mobile by clicking Yes. This process takes 1-2 minutes. Restricted Page 8 of 10
7. After installation, Checkpoint agent requests for trusting vpn.oilindia.in server. Trust this server. 8. Once trusted, Checkpoint agent will configure the settings. Wait for 1-2 minutes for completion of the same. 9. Once complete, the endpoint connects to OIL s VPN Network. Restricted Page 9 of 10
10. The user can now open OIL IT Applications based on authorization levels. Access using Check Point Capsule VPN app 1. Download and install the relevant app Android https://play.google.com/store/apps/details?id=com.checkpoint.vpn ios https://itunes.apple.com/us/app/check-point-capsuleconnect/id506669652?mt=8 2. Create a new VPN site with the following details: a. Server: vpn.oilindia.in b. Authentication Method: Username and Password c. Tunnel type: SSL 3. Log in using OIL Active directory user id Restricted Page 10 of 10