A short guide to using the Fermilab network can be found at this link. Eduroam, Guest, and fgz (registered on Fermilab network) are available. When joining Guest you should be sure to confirm the email you get to have access for more than 8 hours. You should follow Fermilab network policy, which is listed below.
End of Life operating systems (that is, all operating systems that are no longer receiving security updates) are not allowed on the Fermilab network. Specific ones disallowed include (but are not limited to) MacOSX 10.9 - 10.15, and Windows version 7,8 and below. Contact the Fermilab Service Desk (https://servicedesk.fnal.gov) if for some reason you must run a disallowed operating system.
Frequent causes of being blocked from the whole WiFi network include:
- running VPN
- Cisco AnyConnect allowed (as are Home Institution VPNs)
- Disallowed: any Anonymous Bypass VPN (those for the purpose of anonymizing your connections and bypassing controls), including Hola, TOR - software will need to be completely removed from the laptop
- Disallowed: Running screen sharing (your computer has screen sharing to it open)
- Disallowed: peer-to-peer BitTorrent like clients
- Settings in
/etc/ssh/sshd_configand/etc/ssh/ssh_confignot allowed:- The ssh service on this system allows connections by means of public key exchange
- fix by set (be sure it's uncommented)
PubkeyAuthentication no
- fix by set (be sure it's uncommented)
- The ssh service on this system allows connections by means
of a plaintext password- fix by set (be sure it's uncommented)
PasswordAuthentication no
- fix by set (be sure it's uncommented)
- If you are blocked, you may find it best to Turn off the SSH service (remove the RC file from your startup location or run a '
chkconfig sshd off' on Linux systems)
- The ssh service on this system allows connections by means of public key exchange
If you or a colleague is blocked from the network, you will have to go in person to the ServiceDesk (WH ground floor) to prove you have remediated the offending software/settings to be unblocked. This can result in lost time for the hands-on, so be sure to prepare your laptop appropriately in advance.