Connecting to the Marquette VPN is necessary for accessing certain on-campus resources. Due to the variety of desktops and graphical interfaces on Linux, this guide will be written with terminal commands, but you can use your desktop's graphical tools to configure the VPN connection. Prerequisites To connect to the VPN from Linux, you need a Linux machine with openconnect installed. You can check your openconnect version with this command: openconnect --version If it is not installed, install it with your distribution's password manager. This guide assumes you have sudo rights on the machine. Starting the VPN To start the VPN, run this command: sudo openconnect --protocol=fortinet vpn.mu.edu -u MARQUETTE_USERNAME You will be prompted for your sudo credentials and your Marquette credentials in that order. Once you enter your Marquette password, you will get a multi-factor authentication prompt in Microsoft Authenticator. Refer to ITS' article about the VPN for Authenticator setup. Do not close the terminal window. Please note that this is not a split tunnel VPN - meaning that all your network traffic will be routed through Marquette when you connect with this method. You may want to save this command as an alias or script if you are frequently connecting to the VPN from a Linux client. Stopping the VPN To stop the VPN, open the terminal window that you started the VPN in and hit Control+C to interrupt the process and disconnect.

Preamble With 802.1x wired network security being rolled out across campus, unregistered Linux systems will lose access to the wired network. This guide will explain how to register Linux devices to connect to the wired network. Important: This guide is for Marquette owned Linux systems managed by the College of Engineering's Technology team. This guide does not apply to personal Linux machines or Marquette owned machines that do not belong to the Opus College of Engineering. Prerequisites: There are a few pieces of information you need to know to register a device: The hostname and MAC address. Running the command "hostname" from the terminal will return the hostname of the system. To get the MAC address, run the command "ip addr" from the terminal of a Linux system. The address listed to the right of "link/ether" is the MAC address.  Please note that a system may have multiple MAC addresses for each network adapter (wired, wireless, virtual). If you plug into the Marquette network - you will receive a Marquette IP that begins with 134.48.x.x even before you authenticate. The MAC address for the adapter that gets this IP address is the one you want. Knowing the network jack number the machine is plugged into is also necessary. Instructions: Gather the information from the prerequisites section. Navigate to https://forms.office.com/r/bxPnLSebwM in a web browser and fill in the requested information. The device will gain access to the network when the COE Tech approves it and adds it to the list. The COE Tech team reserves the right to enforce security policies on any Linux device that is added to the wired network.

For Linux devices owned by the College of Engineering, submit a ticket to the COE Tech team. Make sure your Linux computer is plugged into the MU network via an Ethernet cable before starting. Step 1: Open Wired Connection Settings The exact steps will vary depending on what distribution and desktop environment you are using, but on the Gnome desktop you can access the wired connection settings from the system tray on the right part of the top bar: Step 2: Open settings for your wired interface Open the settings for your wired connection to the network. It might be a gear icon next to a specific connection like this: Step 3: Select the security tab and enter connection information The exact user interface may vary, but there are a few things you will want to configure: Make sure 802.1x Security is enabled Selected "Protected EAP (PEAP)" as authentication method Select "No CA certificate is required" PEAP version set to automatic Inner authentication is set to "MSCHAPv2" Domain is "marqnet.mu.edu" if there is a domain field Username is your Marquette username with "@marqnet.mu.edu" at the end Password is your MU password Something you will want to be aware of is that you may accidentally expose your MU password if multiple people use your Linux computer and your password is set to be saved for all users: