1. This step is required before proceeding! Have SECURE YOUR ACCOUNT with MFA set up. Enroll a device in the MFA Self Enrollment Portal. More details on enrollment here.

2. Only continue if you completed step 1! Click or enter the following link in your browser: https://vpn.nps.edu. Note: If you get a certificate error message, you should install DoD trust certificates (instructions here).

3. Enter your NPS username (not the whole email) and password. Click LOG IN.

4. You will receive a Microsoft MFA request for second factor authentication. WARNING: If you did not request two factor authentication, then an attacker may be trying to gain access to NPS resources. Report it as fraud! Deny the request! Change your password for safety precautions.

5. After Microsoft MFA authenticating you will be prompted to download the proper package for your device. You may close this window after the download is complete.

   * If you are using Windows 32 bit, click Download Windows 32 bit GlobalProtect agent.

   * If you are using Windows 64 bit, click Download Windows 64 bit GlobalProtect agent.

   Don't know if your Windows is 32 bit or 64 bit? Try Microsoft's instructions to find out here.
   

6. If you receive this message, click Keep.

   

7. It is by default named GlobalProtect.msi or GlobalProtect64.msi depending on if you downloaded the 32-bit or 64-bit version. Double click on the download.

   

8. You may or may not be prompted to run Global Protect. Click Run. If you do not have administrative rights on the desktop/laptop (you will be informed after trying to run it) and it is owned by NPS, contact the TAC.

   

9. Click Next.

   

10. The default location is recommended. Click Next.

    

11. Click Next.

    

12. You may or may not have a prompt asking to allow the software on your PC. Click Yes.

     

13. Click Close.

    

14. To access GlobalProtect, you may search for it after clicking the Windows key on your keyboard. A window may or may not pop up to verify you have the latest GlobalProtect version. Always upgrade it! Click Yes on both. Note: You will no longer have to go through the previous steps to install GlobalProtect on your device, however, you do for each additional device.

    

15. Enter vpn.nps.edu into the portal section. Click Connect.

    

16. A Microsoft login window will appear. Enter your NPS username and password. Click Login.

17. Check the box that says Don't ask again for X days, then accept your Microsoft MFA request. Note: Press Accept only if you made this request. Otherwise Deny.
    1. 

18. A window will pop up showing you are now connected to GlobalProtect.  Note: The standard DoD Disclaimer window will appear.  Closing the disclaimer window will not disconnect you from GlobalProtect.

19. The connection status window at the lower-right will change from "Connecting" to "Secured" when the connection is complete.  You may now access NPS internal resources.

20. To stop using the VPN service, close your VPN session by clicking Disconnect on GlobalProtect.

1. This step is required before proceeding! Have SECURE YOUR ACCOUNT with MFA set up. Enroll a device in the MFA Self Enrollment Portal. More details on enrollment here.

2. Only continue if you completed step 1! Click or enter the following link in your browser: https://vpn.nps.edu. Enter your NPS credentials. Note: If you get a certificate error message, you should install DoD trust certificates (instructions here).
   

3. You will receive a Microsoft MFA request for second factor authentication. WARNING: If you did not request two factor authentication, then an attacker may be trying to gain access to NPS resources. Report it as fraud! Deny the request! Change your password for safety precautions.

4. After Microsoft MFA authenticating you will be prompted to download the proper package for your device. Click Download Mac 32/64 bit GlobalProtect agent. You may close this window after the download is complete.

   

5. Save the package. It is by default named GlobalProtect.pkg.

   

6. Double click or control-click on GlobalProtect.pkg.

   

7. You will be prompted to install Global Protect. Click Continue. If you do not have administrative rights on the desktop/laptop (you will be informed after trying to install it) and it is owned by NPS, contact the TAC.

   

8. Click on Install for all users of this computer. Click Continue.

   

9. Check GlobalProtect. Click Continue.

   

10. You may be prompted to login with your machine's username and password (not your NPS username and password) to allow the software to make changes to your machine.

    

11. Click Install.

    

12. GlobalProtect can be accessed by clicking on the globe icon on the top of your screen. You may be prompted to upgrade the GlobalProtect version. Always upgrade it! Note: You will no longer have to go through the previous steps to install GlobalProtect on your device, however, you do for each additional device.  Current version is 5.2.8-23.  Please update if prompted. 

    

13. Enter vpn.nps.edu into the portal section. Click Connect.
    

14. A Microsoft login window will appear. Enter your NPS username and password. Click Login.

15. Check the box that says Don't ask again for X days, then accept your Microsoft MFA request. Note: Press Accept only if you made this request. Otherwise Deny.

    

16. A window will pop up showing you are now connected to GlobalProtect.  Note: The standard DoD Disclaimer window will appear.  Closing the disclaimer window will not disconnect you from GlobalProtect.

17. The connection status window at the lower-right will change from "Connecting" to "Secured" when the connection is complete.  You may now access NPS internal resources.

18. To stop using the VPN service, close your VPN session by clicking Disconnect on GlobalProtect.

1. This step is required before proceeding! Have SECURE YOUR ACCOUNT with MFA set up. Enroll a device in the MFA Self Enrollment Portal. More details on enrollment here.

   Use Safari Browser App on iPhone or iPad!

2. Download the DoD Root CA 3 cert here: DoD Root CA 3.cer. 
    

3. Tap Allow to download configuration profile. 
   
    

4. Go to Settings > General > Profiles and Device Management and tap on DoD Root CA 3. 
   
    

5. Tap Install and enter your passcode if asked.
   
    

6. Tap Install 2x to install certificate.
   

7. Tap Done on top right
   
    

8. Go back to Settings > General > About > Certificate Trust Settings.
   
    

9. Toggle on DoD Root CA 3 and click Continue.
   

10. Download and run the VPN Client App here: GlobalProtect.
    
11. Enter vpn.nps.edu as your portal Address and tap CONNECT.
    
     
12. Sign in with your NPS email credential and tap Next.
    
     
13. Enter username without the @nps.edu with password and hit Sign in; after being redirected to our NPS organization sign in page. 
    
     
14. Should get a push notification to Approve sign in request from Microsoft Authenticator App.  Hit Approve. 
    
    
15. Optional to Stay signed in.  Hit either No or Yes depending on your preference.  
    

1. This step is required before proceeding! Have SECURE YOUR ACCOUNT with MFA set up. Enroll a device in the MFA Self Enrollment Portal. More details on enrollment here.

2. Only continue if you completed step 1! Download the Global Protect app from the Play Store.

3. Open the app and enter vpn.nps.edu for the portal address. Click CONNECT.

4. Enter your full email and click Next.

5. Enter your NPS username (not the whole email) and password. Click Sign In.

6. Check the box that says Don't ask again for X days.
7. Approve your MFA request.
8. To stop using the VPN service, close your VPN session by clicking Disconnect on GlobalProtect.
9. Since the portal is set up, reconnect again by clicking TAP TO CONNECT.

NOTE: These instructions assume that you are running a recent distribution with a GNOME or Unity desktop environment. Configuration on Plasma, XFCE, or Mate desktops should be similar. Since the logon happens via an embedded web browser, it is not possible to use this method to connect via the command line.

1. This step is required before proceeding! Have SECURE YOUR ACCOUNT with MFA set up. Enroll a device in the MFA Self Enrollment Portal. More details on enrollment here.

2. Download and install the appropriate packages for your distribution:
   Red Hat Enterprise Linux, CentOS, or Fedora Linux: GlobalProtect_rpm-5.3.3.0-4.rpm, GlobalProtect_UI_rpm-5.3.3.0-4.rpm, and ca-certificates-dod-5.11.1-1.noarch.rpm

   RHEL-family distributions

   sudo dnf localinstall ~/Downloads/GlobalProtect_rpm-5.3.3.0-4.rpm ~/Downloads/GlobalProtect_UI_rpm-5.3.3.0-4.rpm ~/Downloads/ca-certificates-dod-5.9.1-2.noarch.rpm

   Ubuntu, Debian GNU/Linux, or Linux Mint: GlobalProtect_deb-5.3.3.0-4.deb, GlobalProtect_UI_deb-5.3.3.0-4.deb, and ca-certificates-dod_5.11.1-1_all.deb

   Debian-family distributions

   sudo apt install libqt5webkit5 sudo dpkg -i ~/Downloads/GlobalProtect_deb-5.3.3.0-4.deb ~/Downloads/GlobalProtect_UI_deb-5.3.3.0-4.deb ~/Downloads/ca-certificates-dod_5.9.1-2_all.deb

   
   Other Distributions:  GlobalProtect_tar-5.3.3.0-4.tgz and GlobalProtect_UI_tar-5.3.3.0-4.tgz

3. If you are using the GNOME Desktop, install the topicons-plus and gnome-tweaks packages:

   Red Hat Enterprise Linux or CentOS

   pkcon install gnome-shell-extension-topicons-plus gnome-tweaks

   Ubuntu or Debian GNU/Linux

   sudo apt install gnome-shell-extension-top-icons-plus gnome-tweaks

4. Log out of your desktop session and log back in.
5. A globe icon should appear in the top right corner of the panel on GNOME, or in the system tray on other desktops. Click this to launch the interface, and enter vpn.nps.edu  as the portal.
6. If you do not see the icon, search for the "Tweaks" application in the activities menu in the top left corner of the screen. Navigate to "Extensions" and ensure that "Topicons Plus" is enabled.
   
   Desktops on newer Linux distributions have deprecated "tray" icons in favor of native app indicators and notifications. These are not yet supported by the official Globalprotect client.
   
   If the interface does not appear after following these steps, you can still reach it by pressing ALT-F2 and entering globalprotect launch-ui in the box that appears.