Using VPN Before Logon on Windows 10
Description
When an individual logs in to a Windows computer that is not connected to the UA network (off-campus), Windows uses “Cached Credentials” to verify the username and password. If the cached credential is not present on the computer, the individual may receive an error message stating “We can’t sign you in with this credential because your domain isn’t available.”
To avoid issues with logins when not connected to the UA network, OIT advises configuring the AnyConnect VPN “Start Before Login” feature using the instructions below.
Prerequisites
While physically on campus, connect the computer to the UA network and then log into the computer. Open the AnyConnect application and then connect to the VPN to update to the most recent version of the AnyConnect VPN software.
Click the gear icon at the bottom of the AnyConnect window to open the settings window, then click the “Preferences” tab.
Verify the top checkbox labeled “Start VPN before user logon to computer” is checked. If it is not, check the box. You may then close the settings window.
Instructions
Once AnyConnect has been configured to use the “Start VPN before user logon to computer” option detailed above, an individual may connect to the VPN before attempting to log on to windows. Once the individual connects to the VPN, a domain login can be used to avoid any potential issues with Cached Credentials.
Power on the device.
Make sure the device is connected to a wired or wireless network. If the device is not connected you will see a globe icon in the lower right corner.
Clicking on this network icon should bring up a list of available Wi-Fi networks. Choose your wireless network and connect.
2. Connect to the VPN by clicking the icon that appears to be two monitors or a padlock with a key, depending upon the version of Windows and AnyConnect.
3. The screen will temporarily display the AnyConnect icon and the text “Connecting, please wait…”
4. The AnyConnect application will then launch. Verify the correct connection entry, then click Connect. At the credential prompt, connect to VPN, as usual, using the myBama username, password, and multifactor authentication mechanism.
5. Once connected to the VPN, log in to the computer using the appropriate domain credentials.
6. Note once logged in to Windows, the computer will still be connected to VPN until AnyConnect is disconnected.