If you are working remotely and need to connect to resources on the internal UW computer network, such as your work computer or file shares on university computers, you will need to use WyoSecure. This limits access to internal UW resources to users with authorized UW accounts.

WyoSecure offers a web-based option (a.k.a. “Core Access”), so installation of client software (a.k.a. “Network Connect”) is not required in most cases.  The web-based option can be accessed by simply opening the webpage https://wyosecure.uwyo.edu. If you have problems, verify that you are using a supported operating system and browser combination.

The Network Connect client is an IPSec based VPN client that functions like a traditional VPN client, such as the Cisco VPN clients. The Network Connect client gives the user an IP address on the campus network and allows access to internal resources using the following ports:

TCP: 80 and 443 (Web Traffic)
TCP: 3389 (Microsoft Remote Desktop)
TCP:22 (SSH/SFTP)
TCP:445 (IT-controlled file shares)
TCP: 1720 (and necessary UDP ports to H.323 public endpoints)
TCP: 5900 (VNC)

To install the Network Connect client:
sign into the WyoSecure site and click on the Start button next to Network Connect. This will install the Network Connect client on your computer. To use the Network Connect client, launch it from your computer.

“Core Access” is recommended, since it does not require the installation of a separate VPN client. It can be accessed from many different devices, such as public computers, handheld computers, phones equipped with Internet access, etc.  Core Access also has the advantage of "bookmarking" links that allow you to automatically connect to restricted internal websites (“Web Bookmarks”), UW file storage (“Files”), and remote desktops (“Terminal Sessions”).   You can add as many bookmarks as you like.  Some bookmarks are automatically created by the system based on your login credentials.  Single sign on capabilities allow the system to forward your username and password to other applications.

The “Network Connect” client is used when your remote computer needs to connect directly to resources behind the UW firewall.  For example, you can access files on warehouse.uwyo.edu using Core Access – but applications running on your remote computer cannot access the files directly.  The Network Connect client software creates a tunnel between your remote computer and the UW internal network, allowing applications on your remote computer to communicate directly with resources behind the UW firewall. You can use this type of access to install software on your remote computer or connect to a UW disk drive.

Network Connect client access (as well as WyoSecure VPN web access) restricts access to internal UW computing resources to users with UW accounts.  However, without restricting the TCP ports reachable, legitimate users who access the UW network remotely from machines infected with viruses will still (unintentionally) be able to spread the virus to the UW network.  In order to provide expanded access and still prevent the spread of viruses to the UW network, expanded access is available using the Network Connect client.  In order to use the expanded access, the Network Connect client will check to ensure that the user’s remote computer is not a risk to the network. The checking varies with the operating system, but in general the remote computer will be checked for an active firewall and for up-to-date software patches and antivirus.  To use the Network Connect client with expanded access, launch the Network Connect client and replace the default sign-in page, https://wyosecure.uwyo.edu/, withhttps://wyosecure.uwyo.edu/expanded.

In addition to the default ports described under the FAQ “What is the Network Connect client and how do I install it?”, expanded access users will have access to the following port:

TCP:445 (Non-IT Managed File Shares)

The table below describes what tasks can be accomplished with each remote access method:

See the list of supported operating systems and browsers.

WyoSecure will timeout after 2 hours of inactivity or 12 hours of login time. The remaining session time will appear in the toolbar after logging in.

If you are using a Windows operating system, click on the Add terminal service icon in the Terminal Session toolbar.

In the Add Terminal Services Session window use the following configuration:

1. Session Type: Windows Terminal Services
2. Bookmark Name: Type a descriptive name for the bookmark
3. Description: Type a useful description of the terminal connection
4. Host: Enter the DNS name of the computer to which you are trying to connect.
5. Username: Type your username or enter <user> to use the same username with which you logged into WyoSecure.
6. Password: If you would like to enable single sign on (SSO) then enter <password> to use the same password with which you logged into WyoSecure.
7. Click the Add button to save the bookmark.

This bookmark will be available whenever you sign into WyoSecure using Core Access.

Yes. Administration of DMZ machines must be performed from the campus network.

Yes. You must open the Web site share using WyoSecure VPN to upload content from off-campus.

Type the path of the file share in the format \\servername\sharename into the browse field and click the Browse button. For example, type \\warehouse\antivirus into the browse field to open the antivirus share on the warehouse server.

As long as you do not “sign out” prior to closing the page, all resources you have accessed through the WyoSecure VPN server since signing on will remain available. However, it is recommended that you do not close this page until you are finished using the VPN server. When you are finished using the VPN server, please click on the “Sign Out” button – and then close the page.

You can only have one WyoSecure session per username open at any given time.