FAQ – Remote Access

Remote Access

Which username/password should i use for [insert service name]?

We have evolved to where each user has one username and ONE password. We may refer to your CADE or CoE username and password. This is separate from your CIS/uNID and it’s password, but we may ask you to use those for authentication, such as when creating your account or changing your password.

Your CADE/CoE username is some combination of letters from your names (First, Middle(s), & Last) and generated by an algorithm. Once created, we don’t change them except in rare circumstances.

Your CADE/CoE account is use for:
• logging in to any Linux, MacOS, or Windows computer on our Domain (USERS\ or users.coe.utah.edu), including lab machines, Terminal Servers, VDI hosts, or other Virtual Machines.
• connecting/mounting a Network File Share with CIFS/SMB.
• WebPrint and any PaperCut printing services.
• logging in to your DreamSpark and MSDNAA accounts.
• mounting a Network File Share with NFS.

Note: Your CADE/CoE username and passwords are 100% separate and in addition to your CIS or other campus logins and accounts. Some departments may have labs or computers that require specific logins.

Permalink.

Connecting to CoE via the Campus VPN

For remote access to any CADE/CoE IT services or systems, you need to use the Campus VPN (Virtual Private Network) with a registered uNID.

NOTE: If you are not associated with the College of Engineering, this is NOT FOR YOU.

1. To register your uNID, send an e-mail to support@coe.utah.edu and describe your need for Campus VPN access as a ‘student’, ‘staff’ or for ‘researcher/professor’, and provide your name and UNID.

2. While the WebVPN is available, most services/software require and we recommend you install the Cisco AnyConnect client, available from our Downloads page www.cade.utah.edu/downloads, OSL or via the WebVPN after sign-in.

3. After you receive a response that your UNID has been added, you must set the connection server as ‘vpnaccess.utah.edu’ and the Username format:
Students: u#######@student.coe.utah.edu
Staff: u#######@staff.coe.utah.edu
Researcher/Faculty: u#######@research.coe.utah.edu

Use your CIS password when connecting.

You will also need the Duo App on your smartphone as campus requires 2 Factor Authentication for VPN service. The Duo App will generate a code for you, which will essentially be a 2nd password, to complete your login to the VPN.

Further information and instructions for support can be found at https://uofu.service-now.com/cf/kb_view.do?sysparm_article=KB0000538

Permalink.

Computational Server

CADE no longer provides Computational Servers.

compute1.eng.utah.edu has been retired as of 10/4/2016 and files that where located under /scratch have been mounted on any lab1 or lab2 machine. The files are located at /research/scratch/{USERNAME}

/research/scratch works on auto mount. You will not see anything until moved into /research/scratch/{USERNAME}

If you need to run long computational jobs or higher-powered computing resources, we suggest getting an account with CHPC.

Permalink.

Which machines can I access remotely?

You can access any of the machines within the CADE Lab (Linux) with ssh, VNC, NoMachine, etc., and the SD Mac Lab (Apple OS X) with ssh. For ssh, from a terminal window, use ‘ssh -Y username@machine.eng.utah.edu’, where username is your CADE login. The naming convention for machine is:

CADE
lab1-X (where X is any number from 1-40)
lab2-Y (where Y is any number from 1-35)

SD Mac Lab
lab8-Z (where Z is any number between 1-32)
Please note that remote access to the Apple’s is with ssh only (no VNC, NoMachine or other GUI connections).  Marriott Library does offer full GUI remote access to Mac Terminal Servers – see these instructions.

If you are using a Windows system to access these machines remotely, please use Window PowerShell, putty or see our FAQ’s on CADE Lab Remote Access.

Windows Machines:
You can not access the Engman Lab machines directly but you may access our Windows TerminalServers(animal.eng.utah.edu) for remote access to some Windows software or the VMware VDI pools for a lab-machine setup.

Please see the Windows FAQ’s for more information on how to connect to the Windows system.

Permalink.

How can I get wireless access in the labs?

Wireless access is now controlled campus-wide by NetCom, a division of UIT.  You can log onto their networks by following the instructions on their website, http://www.it.utah.edu/services/connected/wireless/index.html.

Permalink.

How do I log into a CADE machine if I get a warning message saying ‘Host Key Verification Failed’?

Likely, the message you recieved looks like this:

@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
@ WARNING: REMOTE HOST IDENTIFICATION HAS CHANGED! @
@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@@
IT IS POSSIBLE THAT SOMEONE IS DOING SOMETHING NASTY!
Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is(…).
Please contact your system administrator.
Add correct host key in /home/username/.ssh/known_hosts to get rid of this message.
Offending key in /home/username/.ssh/known_hosts:xx
RSA host key for lab-machine has changed and you have requested strict checking.
Host key verification failed.
You can completely delete the existing ‘known_hosts‘ file in your .ssh directory to avoid this message and log in, or as the message states, remove the offending line. The ‘known_hosts’ file will be repopulated, and a machine entry will be added each time you log in to a different machine.

rm ~/.ssh/known_hosts

You can add the correct host key containing entries of all the CADE lab machines from a file on our website, available here.

Permalink.

How do I run GUI/X applications remotely with ssh?

If you are having problems running X applications (or GUI driven, java, etc.) remotely then most likely you need to use the -Y option instead of the -X/-x (i.e. ssh -Yl lab2-4.eng.utah.edu)

This is caused by a new change in any Openssh version newer than 3.7.1

For more information, including other options for running graphical applications consult the SSH or Remote Access FAQ pages.

Permalink.

How do I use ssh for remote access?

If you use Mac OS X or some flavor of Linux, you already have the means to ssh in. Please see the SSH FAQ listings.

To ssh to the Linux machines with Windows (7, Vista or XP) we recommend installing an ssh client such as putty, a free download.  This will only provide command line access.  You can also try Cygwin which is available free online.  CygwinX provides an xserver, allowing you to open X windows (GUIs, java, etc.), but see the next paragraph for the best option.

The recommended way to connect to our Linux machines is NoMachine.  This provides a full GUI login, as though you were logging in to the machine in the lab.

See also which machines you can connect to here.

Permalink.

What is SSH?

Secure Shell (SSH), sometimes known as Secure Socket Shell, is a UNIX-based command interface and protocol for securely getting access to a remote computer. It is widely used by network administrators to control desktop machines and other kinds of servers remotely.

SSH is actually a suite of three utilities – slogin, ssh, and scp – that are secure versions of the earlier UNIX utilities, rlogin, rsh, and rcp. SSH commands are encrypted and secure in several ways. Both ends of the client/server connection are authenticated using a digital certificate, and passwords are protected by being encrypted. SSH uses RSA public key cryptography for both connection and authentication. Encryption algorithms include Blowfish, DES, and RSA.

If you have Mac OS X or use Linux then you already have the tools you need to remotely log in. Please see the FAQ on “Which CADE machines can I log into” for information on the correct syntax.

For those of you who use Windows and want to be able to use SSH to remotely log in you will need to install and xserver client. We recommend using Windows PowerShell or PuTTY.  There are clients available for Windows like CygwinSecureFX, XMing and SSH for Windows.

Permalink.

How do I get a GUI or desktop environment remotely for the Linux machines?

By using NoMachine.

All CADE Lab Linux machines are running NX Server. This allows you to open a desktop connection similar to VNC without the need to start a separate VNC server session. To connect you will need to install the NoMachine client on your local machine. Clients are available for Windows, OS X, and Linux.

The configuration for remotely connecting to CADE using NoMachine can be found here.

What remote machine or what’s the full name to connect to?  See this page.

Permalink.

CADE Lab Remote Access

All lab1 and lab2 machines are running NX Server. This allows you to open a desktop connection similar to VNC without the need to start a separate vnc server session. To connect you will need to install the NX client on your local machine. The downloads are available from the NoMachine website. Clients are available for Windows, OS X, Linux and Solaris.

1. Configure the remote connection by clicking the Add a Computer button at the top of the page.
Screen Shot 2014-01-29 at 10.13.09 AM

2. Name the connection, change the protocol to SSH, and add the hostname of the computer to connect to. (Make sure the port is set to 22)
Screen Shot 2014-01-29 at 10.13.38 AM

3. Click the Advanced button on the lower left, and change the login to Use the NoMachine Login.
Screen Shot 2014-01-29 at 10.14.28 AM

4. Enter you CADE lab username and password at the authentication prompt.
Screen Shot 2014-01-29 at 10.15.11 AM

5. Click Create a New Virtual Desktop and choose the desktop enviornment for the remote session.
Screen Shot 2014-01-29 at 10.15.42 AM

More, in-depth, instructions can be found in the NoMachine Support page.

What remote machine or what’s the full name to connect to?  See this page.

Permalink.

Can we access the Engman Lab Windows machines remotely? (How can I access the Window Terminal Server animal.eng.utah.edu?)

Nope.

But, CADE is happy to provide access to our Windows Terminal servers, animal.eng.utah.edu. These servers allow users to remotely access and run windows software, though not all software on the lab machines is available to run there. To connect to the Terminal servers you will need to use one of the following:

a.) Open a web-browser to https://coesec.eng.utah.edu, download and install the VMware Horizon client and add the ‘connection server’ coesec.eng.utah.edu, or
b.) From the same web page, choose the HTML Access and connect through your web-browser.
c.) Run Microsoft Remote Desktop and connect to animal.eng.utah.edu.

Please choose “USERS” from the Domain list and login with your CADE username/pw for a desktop.

For further information and other options for running Windows software remotely, see http://www.cade.utah.edu/remote-desktop-access/

Permalink.

How do I connect with sftp?

We recommend that you use any sftp client, for security reasons. For client options, see this FTP FAQ.

Permalink.

How can I mount a network shared drive to my computer?

If you are off campus, you must first establish a connection to the Campus VPN.

On campus or from the VPN, you can mount a network share/network drive by following the instructions below for your Operating System (OS).  
Note:  In the descriptions below, replace ‘sharename’ with the share you wish to connect to. To connect to your home directory, you can replace ‘earth.coe.utah.edu’ with ‘chips.eng.utah.edu’ and ‘sharename’ with ‘home/username’ (or home\username, on Windows).

For Windows users-  open a Windows Explorer window and choose the menu ‘Tools’ :: ‘Map Network Drive.’  In the window that opens, choose a drive letter not in use, and for folder, enter the server and share name as follows:  \\earth.coe.utah.edu\sharename  (remember, where ‘sharename’ = ‘share-you-want-to-mount’). Click the ‘Reconnect at logon’ if that’s your preference, but you must check the ‘Connect using different credentials’ box.  Click ‘Finish’ and enter your Username as USERS\username and your Windows password.

For Mac OS X users- in the Finder, select the menu ‘Go’ :: ‘Connect to Server…’ (or cmd-K).  For the Server Address, enter smb://earth.coe.utah.edu/sharename and click the ‘Connect’ button.  In the user window that appears, ensure ‘Registered User’ is selected and in the Name field enter your Windows username and password and click ‘Connect’.

Permalink.

Can I use my iOS/Android/Windows mobile device to connect to the labs?

Probably, but it depends on what you’re trying to run.

For a windows desktop, see Remote Desktop Access

SSH and VNC clients exist, and you should be able to connect as from any other computer, but see the Remote Access FAQ’s for details.

There are apps, such as Matlab Mobile that can connect to our license server through your CADE account, but many lab resources will require that you be on the Campus VPN, first.

Once on the VPN, you can connect to the Windows Terminal Server, animal.eng.utah.edu with an RDP/RDC client.

Or use an HTML5 connection to animal.eng.utah.edu. Just a web browser is required. HTML5 Desktop use the “Login as Guest” button then click the link to animal.eng.utah.edu. You will be presented with a login screen where you should input your CADE username and password.

Permalink.

Ignoring that NX is better, how do I set up XMing for remote access?

The ssh access available on lab machines can forward X connections for running GUI applications remotely. X-forwarding is handled natively under Linux and MacOSX, but Windows users must install a 3rd party program in order to use it. One such program is XMing. We think NX/NoMachine is the best option, but

Using XMing is relatively easy.

  • Download and install a copy of XMing from their website
  • Start XMing Launch
  • When asked to choose a session type, select ‘Start a program’
  • Type the hostname of a lab machine (such as lab2-28.eng.utah.edu) into the “Connect to computer” field, enter your CADE username and password
  • Save the configuration for later use
  • Connect

Permalink.

How do I log in to the Mac’s from home?

Other than with ssh, we don’t allow remote access to the SD Mac Lab (WEB 124) machines.  See the FAQ on that, if that works for you.

If you would like to remotely access a Mac, however, the Marriott Library now offers a bank of Mac Terminal Servers all Faculty, Students and Staff may access.  They may not have some of the applications installed in our Mac Lab.  See their instructions here.

Permalink.

How do I add the list of CADE Lab machines and compute servers to my list of ‘known_hosts’?

Download the known_hosts file from the ssh directory and place it in the appropriate directory or add the necessary lines to your existing file. Some software may require the list to be in a specific format or that the file be renamed.
www.cade.utah.edu/downloads

Permalink.

Can I run MATLAB Mobile on my iOS or Android device?

Indeed – simply download and install the appropriate mobile device application and then execute the commands in the Matlab application (R2012a+), from a lab machine, or any machine with a licensed copy of Matlab.

You will need MATLAB Connector (available from MathWorks, http://www.mathworks.com/mobile/) on your machine/device. Upon running the install_connector command, you’ll be prompted to accept the license agreement, and then receive an error message you can safely ignore:
Error using install_connector>doinstall (line 100)

Error: You do not have write permission to the MATLAB Installation folder
(/usr/local/apps/matlab/matlab14b).
The MATLAB Connector Installer cannot proceed.

Error in install_connector (line 54)
doinstall

Run the ‘connector on’ command and continue as normal.

See Matlab’s site for full instructions and more information, including a link to download the mobile app.

Permalink.

What if I am locked out of my account?

Perhaps you have entered your password incorrectly too many times logging in to one of our Windows machines or ActiveDirectory controlled services (Lab, animal.eng, mounting network shares, etc.) or are getting the following error:

“The referenced account is currently locked out and may not be logged on to.”

We can unlock your account but it’s only secure if you come ask us in person. It’s difficult to verify identity through e-mail, phone, etc. You may, however, remove the lock by syncing or resetting your password via the CoE User Tools page available in the right column of our home page.

If this does not work for your situation, stop in to see the Help Desk in WEB 210 or 224 or e-mail support@coe.utah.edu.

Permalink.

May I access my campus desktop machine remotely?

The short answer: yes.

The longer version: If the machine has a static IP address, try connecting to that remotely. The machine must be set up to allow remote access (via ssh, screen sharing/vnc, remote desktop, etc.), but if you don’t have administrator privileges on this machine, we may need to enable remote access for you (see below). We may also need to allow such a connection on the proper ports through the CoE firewall. You may be able to buy Provigil on the Campus VPN.

Connecting to a Windows machine:
– Try using MS’s Remote Desktop Assistant to configure your machine for remote access.
– On the computer you would like to connect TO, in Windows Explorer, right click on ‘Computer’, select ‘Properties’, then select ‘Remote Settings’ from the menu on the right.
– Select your user and ensure it has permission to RDC to the computer, and verify a password is set (RDC will not enable unless the user has a password, it cannot be blank).
– Get the machines IP address- open a command prompt (type “cmd” in Search and it will open) and type “ipconfig” (no ” “‘s) and it will list your IP (use the one in the form of 155.98.X.X, the wired ethernet address)
– On the computer you wish to connect FROM, open your RDC client, put in the IP address, login as the user with remote privileges and you should be connected to the current running session.

Connecting to a Mac:
– On the computer you would like to connect TO, open ‘System Preferences’ and the ‘Sharing’ pane.
– Check the ‘Screen Sharing’ or ‘Remote Management’ for general VNC access, ‘Remote Login’ for ssh access, other available as needed. Ensure you have added your user for the access level on the right.
– Get the machines IP address- click ‘Show All’/reopen System Preferences and click on ‘Network’, and find the Ethernet device in the left column, IP address will show on the right in the form 155.98.X.X.
– On the computer you wish to connect FROM, open Screen Sharing in the Finder via the ‘Go’ :: ‘Connect to Server…’. Enter the address as vnc://155.98.X.X

If you can’t get through or need help getting the machine set for remote access, send the IP and your request, plus any errors or issues you have to support@coe.utah.edu and we’ll help get you connected.

Permalink.