FAQ – Remote Access

Remote Access

Connecting to CoE via the Campus VPN

For remote access to any CADE/CoE IT services or systems, you need to use the Campus VPN (Virtual Private Network) with a registered uNID.

NOTE: If you are not associated with the College of Engineering, this is NOT FOR YOU.

1. To register your uNID, send an e-mail to support@coe.utah.edu and describe your need for Campus VPN access as a ‘student’, ‘staff’ or for ‘researcher/professor’, and provide your name and UNID.

2. While the WebVPN is available, most services/software require and we recommend you install the Cisco AnyConnect client, available from our Downloads page www.cade.utah.edu/downloads, OSL or via the WebVPN after sign-in.

3. After you receive a response that your UNID has been added, you must set the connection server as ‘vpnaccess.utah.edu’ and the Username format:
Students: u#######@student.coe.utah.edu
Staff: u#######@staff.coe.utah.edu
Researcher/Faculty: u#######@research.coe.utah.edu

Use your CIS password when connecting.

You will also need the Duo App on your smartphone as campus requires 2 Factor Authentication for VPN service. The Duo App will generate a code for you, which will essentially be a 2nd password, to complete your login to the VPN.

Further information and instructions for support can be found at https://uofu.service-now.com/cf/kb_view.do?sysparm_article=KB0000538


Which username/password should i use for [insert service name]?

We have {finally} evolved to where each user has ONE username and ONE password for all CoE/CADE machines and services. We may refer to your CADE or CoE username and password. This is separate from your CIS/uNID and it’s password, but we may ask you to use those for authentication, such as when creating your account or changing your password.

Accounts created prior to ~May of 2017, CADE/CoE username is some combination of letters from your names (First, Middle(s), & Last) and generated by an algorithm. For al newer accounts, the username is your uNID (formatted as a lower-case ‘u’ and 7digits). Once created, we don’t change them except in rare circumstances.

Your CADE/CoE account is used for:
• logging in to any Linux, MacOS, or Windows computer on our Domain (USERS\ or users.coe.utah.edu), including lab machines, Terminal Servers, VDI hosts, or other Virtual Machines.
• connecting/mounting a Network File Share with CIFS/SMB.
• WebPrint and any PaperCut printing services.
• mounting a Network File Share with NFS.

Note: Your CADE/CoE username and passwords are 100% separate and in addition to your CIS or other campus logins and accounts. Some departments may have labs or computers that require specific logins.


Computational Server

CADE no longer provides Computational Servers.

compute1.eng.utah.edu has been retired as of 10/4/2016 and files that where located under /scratch have been mounted on any lab1 or lab2 machine. The files are located at /research/scratch/{USERNAME}

/research/scratch works on auto mount. You will not see anything until moved into /research/scratch/{USERNAME}

If you need to run long computational jobs or higher-powered computing resources, we suggest getting an account with CHPC.


Which machines can I access remotely?

You can access any of the machines within the CADE Lab (Linux) with ssh, VNC, NoMachine, etc., and the SD Mac Lab (Apple OS X) with ssh. For ssh, from a terminal window, use ‘ssh -Y username@machine.eng.utah.edu’, where username is your CADE login. The naming convention for machine is:

lab1-X (where X is any number from 1-40)
lab2-Y (where Y is any number from 1-35)

SD Mac Lab
lab8-Z (where Z is any number between 1-32)
Please note that remote access to the Apple’s is with ssh only (no VNC, NoMachine or other GUI connections).  Marriott Library does offer full GUI remote access to Mac Terminal Servers – see these instructions.

If you are using a Windows system to access these machines remotely, please use Window PowerShell, putty or see our FAQ’s on CADE Lab Remote Access.

Windows Machines:
You can not access the Engman Lab machines directly, but you may access our VMware VDI pools for a lab-machine setup.

Please see the Windows FAQ’s for more information on how to connect to the Windows system.


How can I get wireless access in the labs?

Wireless access is now controlled campus-wide by NetCom, a division of UIT.  You can log onto their networks by following the instructions on their website, http://www.it.utah.edu/services/connected/wireless/index.html.


How do I log into a CADE machine if I get a warning message saying ‘Host Key Verification Failed’?

Likely, the message you recieved looks like this:

Someone could be eavesdropping on you right now (man-in-the-middle attack)!
It is also possible that the RSA host key has just been changed.
The fingerprint for the RSA key sent by the remote host is(…).
Please contact your system administrator.
Add correct host key in /home/username/.ssh/known_hosts to get rid of this message.
Offending key in /home/username/.ssh/known_hosts:xx
RSA host key for lab-machine has changed and you have requested strict checking.
Host key verification failed.
You can completely delete the existing ‘known_hosts‘ file in your .ssh directory to avoid this message and log in, or as the message states, remove the offending line. The ‘known_hosts’ file will be repopulated, and a machine entry will be added each time you log in to a different machine.

rm ~/.ssh/known_hosts

You can add the correct host key containing entries of all the CADE lab machines from a file on our website, available here.


How do I run GUI/X applications remotely with ssh?

If you are having problems running X applications (or GUI driven, java, etc.) remotely then most likely you need to use the -Y option instead of the -X/-x (i.e. ssh -Yl lab2-4.eng.utah.edu)

This is caused by a new change in any Openssh version newer than 3.7.1

For more information, including other options for running graphical applications consult the SSH or Remote Access FAQ pages.


How do I use ssh for remote access?

If you use Mac OS X or some flavor of Linux, you already have the means to ssh in. Please see the SSH FAQ listings.

To ssh to the Linux machines with Windows (7, Vista or XP) we recommend installing an ssh client such as putty, a free download.  This will only provide command line access.  You can also try Cygwin which is available free online.  CygwinX provides an xserver, allowing you to open X windows (GUIs, java, etc.), but see the next paragraph for the best option.

The recommended way to connect to our Linux machines is NoMachine.  This provides a full GUI login, as though you were logging in to the machine in the lab.

See also which machines you can connect to here.


What is SSH?

Secure Shell (SSH), sometimes known as Secure Socket Shell, is a UNIX-based command interface and protocol for securely getting access to a remote computer. It is widely used by network administrators to control desktop machines and other kinds of servers remotely.

SSH is actually a suite of three utilities – slogin, ssh, and scp – that are secure versions of the earlier UNIX utilities, rlogin, rsh, and rcp. SSH commands are encrypted and secure in several ways. Both ends of the client/server connection are authenticated using a digital certificate, and passwords are protected by being encrypted. SSH uses RSA public key cryptography for both connection and authentication. Encryption algorithms include Blowfish, DES, and RSA.

If you have Mac OS X or use Linux then you already have the tools you need to remotely log in. Please see the FAQ on “Which CADE machines can I log into” for information on the correct syntax.

For those of you who use Windows and want to be able to use SSH to remotely log in you will need to install and xserver client. We recommend using Windows PowerShell or PuTTY.  There are clients available for Windows like CygwinSecureFX, XMing and SSH for Windows.


How do I get a GUI or desktop environment remotely for the Linux machines?

By using NoMachine.

All CADE Lab Linux machines are running NX Server. This allows you to open a desktop connection similar to VNC without the need to start a separate VNC server session. To connect you will need to install the NoMachine client on your local machine. Clients are available for Windows, OS X/macOS, and Linux.

We have upgraded the NoMachine server software on the CADE Linux machines and because of backwards-incompatible changes between server versions, you’ll need to DELETE ALL OLD CONNECTIONS on your NoMachine client.
When creating a new connection…
1. select SSH on the protocol drop-down
2. Enter the hostname of the machine
3. Use the Password authentication method (default)
4. Don’t use a proxy (default)
If using the older version 5.x client, make sure to select “Use the System Login”.

The configuration for remotely connecting to CADE using NoMachine can be found here.

What remote machine or what’s the full name to connect to?  See this page.


CADE Lab Remote Access

for previous users of NoMachine- we have upgraded the NoMachine server software on the CADE linux machines and because of backwards-incompatible changes, you will need to DELETE ALL OLD CONNECTIONS in your NoMachine client.

All lab1 and lab2 machines are running NX Server. This allows you to open a desktop connection similar to VNC without the need to start a separate vnc server session. To connect you will need to install the NX client on your local machine. The downloads are available from the NoMachine website. Clients are available for Windows, OS X/macOS, Linux and Solaris.

1. Configure the remote connection by clicking the Add a Computer button at the top of the page.
Screen Shot 2014-01-29 at 10.13.09 AM

2. Name the connection, change the protocol to SSH, and add the hostname of the computer to connect to. (Make sure the port is set to 22)
Screen Shot 2014-01-29 at 10.13.38 AM

3. When prompted to choose which authentication method, choose Password. (This should be selected by default).

4. Do NOT use a proxy. (This should be selected by default).

5. Enter you CADE lab username and password at the authentication prompt.
Screen Shot 2014-01-29 at 10.15.11 AM

5. Click Create a New Virtual Desktop
Screen Shot 2014-01-29 at 10.15.42 AM

More, in-depth, instructions can be found in the NoMachine Support page.

What remote machine or what’s the full name to connect to?  See this page.


How do I connect with sftp?

We recommend that you use any sftp client, for security reasons. For client options, see this FTP FAQ.


How can I mount a network shared drive to my computer?

If you are off campus, you must first establish a connection to the Campus VPN.

On campus or from the VPN, you can mount a network share/network drive by following the instructions below for your Operating System (OS).  
Note:  In the descriptions below, replace ‘sharename’ with the share you wish to connect to. To connect to your home directory, you can replace ‘earth.coe.utah.edu’ with ‘chips.eng.utah.edu’ and ‘sharename’ with ‘home/username’ (or home\username, on Windows).

For Windows users-  open a Windows Explorer window and choose the menu ‘Tools’ :: ‘Map Network Drive.’  In the window that opens, choose a drive letter not in use, and for folder, enter the server and share name as follows:  \\earth.coe.utah.edu\sharename or \\chips.eng.utah.edu\sharename (remember, where ‘sharename’ = ‘share-you-want-to-mount’). Click the ‘Reconnect at logon’ if that’s your preference, but you must check the ‘Connect using different credentials’ box.  Click ‘Finish’ and enter your CoE username and password.

For Mac OS X users- in the Finder, select the menu ‘Go’ :: ‘Connect to Server…’ (or cmd-K).  For the Server Address, enter smb://earth.coe.utah.edu/sharename or smb://chips.eng.utah.edu/sharename and click the ‘Connect’ button.  In the user window that appears, ensure ‘Registered User’ is selected and in the Name field enter your CoE username and password and click ‘Connect’.


Ignoring that NX is better, how do I set up XMing for remote access?

The ssh access available on lab machines can forward X connections for running GUI applications remotely. X-forwarding is handled natively under Linux and MacOSX, but Windows users must install a 3rd party program in order to use it. One such program is XMing. We think NX/NoMachine is the best option, but

Using XMing is relatively easy.

  • Download and install a copy of XMing from their website
  • Start XMing Launch
  • When asked to choose a session type, select ‘Start a program’
  • Type the hostname of a lab machine (such as lab2-28.eng.utah.edu) into the “Connect to computer” field, enter your CADE username and password
  • Save the configuration for later use
  • Connect


How do I log in to the Mac’s from home?

Other than with ssh, we don’t allow remote access to the SD Mac Lab (WEB 124) machines.  See the FAQ on that, if that works for you.

If you would like to remotely access a Mac, however, the Marriott Library now offers a bank of Mac Terminal Servers all Faculty, Students and Staff may access.  They may not have some of the applications installed in our Mac Lab.  See their instructions here.


How do I add the list of CADE Lab machines and compute servers to my list of ‘known_hosts’?

Download the known_hosts file from the ssh directory and place it in the appropriate directory or add the necessary lines to your existing file. Some software may require the list to be in a specific format or that the file be renamed.


Can I run MATLAB Mobile on my iOS or Android device?

Indeed – simply download and install the appropriate mobile device application and then execute the commands in the Matlab application (R2012a+), from a lab machine, or any machine with a licensed copy of Matlab.

You will need MATLAB Connector (available from MathWorks, http://www.mathworks.com/mobile/) on your machine/device. Upon running the install_connector command, you’ll be prompted to accept the license agreement, and then receive an error message you can safely ignore:
Error using install_connector>doinstall (line 100)

Error: You do not have write permission to the MATLAB Installation folder
The MATLAB Connector Installer cannot proceed.

Error in install_connector (line 54)

Run the ‘connector on’ command and continue as normal.

See Matlab’s site for full instructions and more information, including a link to download the mobile app.


What if I am locked out of my account?

Perhaps you have entered your password incorrectly too many times logging in to one of our Windows machines or ActiveDirectory controlled services (Lab, mounting network shares, etc.) or are getting the following error:

“The referenced account is currently locked out and may not be logged on to.”

We can unlock your account but it’s only secure if you come ask us in person. It’s difficult to verify identity through e-mail, phone, etc. You may, however, remove the lock by syncing or resetting your password via the CoE User Tools page available in the right column of our home page.

If this does not work for your situation, stop in to see the Help Desk in WEB 210 or 224 or e-mail support@coe.utah.edu.


May I access my campus desktop machine remotely?

The short answer: yes.

The longer version: If the machine has a static IP address, try connecting to that remotely. The machine must be set up to allow remote access (via ssh, screen sharing/vnc, remote desktop, etc.), but if you don’t have administrator privileges on this machine, we may need to enable remote access for you (see below). We may also need to allow such a connection on the proper ports through the CoE firewall. You may be able to buy Provigil on the Campus VPN.

Connecting to a Windows machine:
– Try using MS’s Remote Desktop Assistant to configure your machine for remote access.
– On the computer you would like to connect TO, in Windows Explorer, right click on ‘Computer’, select ‘Properties’, then select ‘Remote Settings’ from the menu on the right.
– Select your user and ensure it has permission to RDC to the computer, and verify a password is set (RDC will not enable unless the user has a password, it cannot be blank).
– Get the machines IP address- open a command prompt (type “cmd” in Search and it will open) and type “ipconfig” (no ” “‘s) and it will list your IP (use the one in the form of 155.98.X.X, the wired ethernet address)
– On the computer you wish to connect FROM, open your RDC client, put in the IP address, login as the user with remote privileges and you should be connected to the current running session.

Connecting to a Mac:
– On the computer you would like to connect TO, open ‘System Preferences’ and the ‘Sharing’ pane.
– Check the ‘Screen Sharing’ or ‘Remote Management’ for general VNC access, ‘Remote Login’ for ssh access, other available as needed. Ensure you have added your user for the access level on the right.
– Get the machines IP address- click ‘Show All’/reopen System Preferences and click on ‘Network’, and find the Ethernet device in the left column, IP address will show on the right in the form 155.98.X.X.
– On the computer you wish to connect FROM, open Screen Sharing in the Finder via the ‘Go’ :: ‘Connect to Server…’. Enter the address as vnc://155.98.X.X

If you can’t get through or need help getting the machine set for remote access, send the IP and your request, plus any errors or issues you have to support@coe.utah.edu and we’ll help get you connected.