Skip to: search, navigation, or content.

Indiana University Bloomington

Technology Services

In Windows XP, how do I make a VPN connection to the IU network?

To create a virtual private network (VPN) connection to the Indiana University network using Windows XP, either wirelessly or remotely, follow these steps:

  1. In the Windows XP default view, from the Start menu, right-click Network Places and select Properties. In the Windows XP Classic View, from the Start menu, follow these steps:
    a. Click Settings, and then Control Panel.
    b. In the Control Panel window, if "Pick a category" appears in large print, on the left frame in the "Control Panel" section, click the link titled Switch to Classic View.
    c. You should now see all the control panels in the main part of the window. Double-click Network Connections.
  2. In the left frame in the "Network Tasks" section, click the link titled Create a new connection.
    Note: If your left frame is not showing, look for the New Connection Wizard icon in the window instead, and double-click it
  3. The New Connection Wizard should open. Click the Next button. Choose the radio button labeled Connect to the network at my workplace. Click Next again
  4. Click the radio button labeled Virtual Private Network connection. Again click the Next button.
    Note: If the Virtual Private Network option is not available, you may need to enable the Remote Access Connection Manager service. For more information, please see the Knowledge Base document In Windows 2000 or XP Professional, why is the option to create a VPN connection unavailable
  5. Type a name for the connection (e.g., IUB Remote VPN or IUPUI Wireless VPN). Click the Next button
  6. At this point, you may see the message, "Windows can automatically dial the initial connection to the Internet or other public network before establishing the virtual connection." This means that Windows recognizes another connection method on your computer, most likely a Dial-up Networking icon. Windows is simply offering to connect to the Internet with it before opening the VPN connection. In most cases, you should be able to select Do not dial the initial connection.
    If you must dial in to connect to the Internet, you may want to consider selecting Automatically dial this initial connection, and then select the dial up connection from the list presented. This is offered for convenience; it is not a required step
  7. Type the name or IP address of the VPN server, and then click Next
  8. In the Connection Availability window, select the option most appropriate for your situation. Click Next.
    Note: If you are using a wireless card and wish to log into a domain (including ADS) upon starting Windows XP, you must select the Anyone's use option. Selecting this option will make the VPN connection available when you choose the Log on using dial-up connection option at the login screen
  9. Finally, on the last screen, if you want an icon on your desktop for the new connection, check the box labeled Add a shortcut to this connection to my desktop. Click the Finish button
  10. Windows XP will automatically open the connection for you. You should see a new window; its name will be the one you provided in step 5. Click the Properties button.
    a. Click the Options tab. Check the box labeled Include Windows logon domain.
    b. Click the Networking tab. In the "This connection uses the following items:" section, only the following should be checked
    • Internet Protocol (TCP/IP)
    • File and Printer Sharing for Microsoft Networks
    • Client for Microsoft Network

    c. Select TCP/IP, and click the Properties button.
    d. Ensure that both the IP address and DNS address are set to obtain an address automatically. Click the OK button.
    e. Click the Security tab.
    f. Select the radio button labeled Advanced (custom settings) and then click the Settings... button.
    g. In the section entitled "Logon Security", select the radio button next to Allow these protocols.
    h. The only checkbox that should be checked is Microsoft CHAP Version 2 (MS-CHAP v2). ClickOK, then OK again.

  11. You should be back to the authentication screen for the connection. If you wish to connect now, enter your username, password, and domain, which should be ADS .
  12. To connect to the VPN server at a later time, simply double-click the icon for the connection you created. In XP's default Start menu, find it by clicking Start, then Connect To, and finally the name of the connection. In XP's ClassicStart menu, click Start, then Settings, then Network Connections, and finally the name of the connection