Configure VPN Connection on Linux (OpenVPN)
Requirement!
To set up the VPN, you need a second factor (abbreviation: 2FA or MFA). This is an additional security layer in addition to your HTW account password. You can set up the second factor using the following guide:
Multi-Factor Authentication
It is strongly recommended not to run any additional VPN clients in parallel!
Step 1: Download the OpenVPN configuration file
Download the configuration file from our download portal (you need to log in with your HTW account). Then return to this guide.
To download the VPN profile
Step 2: Install the VPN client
Open a terminal and install OpenVPN with the following command, for example, on Debian/Ubuntu:
sudo apt install openvpn
On other distributions, the command may vary.
The Gnome/Ubuntu Network Manager does support OpenVPN, but unfortunately, it does not support MFA, which is why it is currently only offered via the console.
Step 3: Establish a VPN connection
Invoke OpenVPN with the following command, pointing to the path of the configuration file (VPN profile from Step 1).
sudo openvpn --config <path_to_configuration_file> --dev tun0
Step 4: Login with MFA
Log in with your HTW credentials (without @htw-berlin.de; e.g. s0000001 or amuster) and enter the second factor (one-time password; numeric code) from your authenticator app. You set up this app using our guide.
The connection is successful when "Initialization Sequence Completed" is displayed.
If your client does not support a second factor, enter your password and then the token directly in the password field.
NO openVPN possible in the eduroam or HTW network!
In the entire HTW Berlin network (including the eduroam WLAN), an OpenVPN connection cannot be established (a timeout is displayed in the OpenVPN client).
Its use is mainly intended for outside the university.
Uninstallation of old VPN clients
After completing the installation, we recommend uninstalling any old installations of the Cisco AnyConnect program (if you used our old VPN client).