AnyConnect for Linux
Initial Setup
Make sure that your computer is connected to the Internet (or the WLAN with the identification "Uni-Bremen"). Open the website https://vpn.uni-bremen.de, log in with your university account and then download the installation file for AnyConnect.
Then run this installation file as a private user (root), e.g. with the command
sudo sh anyconnect.sh
in the directory where the downloaded file is located. The installation then takes place without any further action on your part.
After the installation is complete, run the following command:
sudo ln -s /etc/ssl/certs/German_Telekom_Root_CA_2.pem /opt/.cisco/certificates/ca/
Connect - Step 1
Start the Cisco AnyConnect Secure Mobility Client either from the Application menu or by executing the command /opt/cisco/anyconnect/bin/vpnui.
Then click the AnyConnect icon on your panel.
Connect - Step 2
Enter "vpn.uni-bremen.de" after "Connect to:" and click on the gear icon to the right.
Connect - Step 3
Check "Allow local (LAN) access when using VPN (if configured)". This allows you to access resources on your local network (such as printers or file shares) even when the VPN connection is activated.
Connect - Step 5
Select the correct Tunnel type under "Group" and enter the user data of your university account after "Username" and "Password". Then click on "Connect".
The program should now establish the connection.
Note: To access the resources of the Staats- und Universitätsbibliothek (SuUB) you have to Select Tunnel 'Tunnel-all-Traffic'.
Connect - Step 6
If you no longer need the connection, reopen the AnyConnect window and click the "Disconnect" button on the "Connection" tab.
Troubleshooting
I can't download the installation file and get the message "Forbidden" instead.
- Not all university users can access the VPN service. In particular, alumni are excluded from use.
- If you are a regular member of the university (e. g. a regular student or employee) or SuUB staff member, please contact the Account Manager to have your account assignments checked.
During installation, the error message "The vpn client agent was unable to create the interprocess communication depot." appears
- This error message is triggered by an activated Internet connection sharing. Deactivate the network adapter's share in the adapter settings and try the installation again.
I have successfully established a VPN connection, but can't use the library services?
- If you want to use services that are enabled for the network area of the University of Bremen but are not "hosted" in the network area of the university (publishers are an example here), then you have to change the group from "Tunnel-Uni-Bremen" to "Tunnel-all-Traffic" when setting up a connection. For a detailed explanation please read the page VPN-Tunnelarten.
- ATTENTION: With this option, all traffic is now routed through the tunnel. Please leave the tunnel activated with this option only as long as it is needed for working.
AnyConnect does not work with my Linux version. What now?
- Under Linux and other Un*xoide you can use the free software Openconnect. We also have instructions.
Note General
Some restricted services of the University or the State and University Library can only be used when you are on campus, so that the computer you use has an address from the area assigned to the University.
To access these services from home or on the road, you must install a so-called VPN client software (AnyConnect or OpenConnect) on your computer once and establish a connection to the campus with the VPN client before each access to the restricted services. This means that you are "virtually" on campus and can use the services you are used to.
Please note the different types of tunnels and make sure you choose the correct tunnel.
Note: To access the resources of the State and University Library (SuUB) you have to select the tunnel 'Tunnel-all-Traffic'.