All use of Scientific Computing and Data resources in publications and presentations must acknowledge Mount Sinai’s CTSA funding award. Click here

Minerva PI Action Required: PI’s need to request access for external collaborators through Sailpoint

 

 

PI’s need to sponsor their external collaborators through Sailpoint, including requesting a school VPN account and renewing every 120 days.  The High Performance Computing team has made adjustments so that all users can connect to internal login nodes, thus all users will need a VPN account for off-campus login.

Please note: If you are an external collaborator (Non-Mount Sinai) you need to speak with your PI for access.  External users cannot request their own access. PI’s, please refer to the instructions below.

  • All users will need a VPN account for off-campus login. 
  • The PIs need to apply for a Mount Sinai school VPN (Virtual Private Network) and Azure MFA (Multi-Factor Authentication) for this external collaborator within campus network.
  • For the convenience of authentication on Azure MFA, users may self register and manage the password-less sign-in method of Microsoft Authenticator.
  • The network/VPN account expiration is 120 days maximum. An email will go out to PIs in Sailpoint 21 days before the expiration date directing them to log into Sailpoint to extend (or deny) the network/VPN account.

Instructions for how to request Mount Sinai school VPN  for collaborators (Non-Mount Sinai Users)

 

  1. PI’s need to Create an External Researcher Identity following instructions at https://mshsintranet.mountsinai.org/DTP/Create_a_Non-Employee/. Choose “Minerva Restricted User” as the School Department.
  2. PI’s need to proceed to ‘Request Access’ for school VPN Tunnel and Azure MFA Registration, following instructions at https://mshsintranet.mountsinai.org/DTP/Sailpoint_Application_Access/
  3. For the convenience of authentication on Azure MFA, users may self register and manage the passwordless sign-in method of Microsoft Authenticator via https://aka.ms/mfasetup (VPN or campus connection required).
  4. You (collaborators) can proceed to login to the VPN at https://itsecurity.mssm.edu/vpn-instructions/owa/vpn-step-2/ (more detail provided at: https://itsecurity.mssm.edu/).
  5. You (collaborators) can proceed to VIP setup for Minerva two-factor authentication, following instructions at https://itsecurity.mssm.edu/vpn-instructions/owa/vpn-step-1/. After you download the VIP token to your local device, if you have trouble accessing https://register4vip.mssm.edu while off-campus, you may send an email to ASCIT at ASCIT@mssm.edu for help.
  6. If you already have been granted a Minerva account after application, please access Minerva using ssh your_Minerva_userid@minerva.hpc.mssm.edu.

If you don’t have a Minerva account, please apply for one using the Mount Sinai ID received above at https://acctreq.hpc.mssm.edu/  Please check external account in the form.

You can reach out to the IT Helpdesk here for assistance on VPN issues:

By Phone: 1-212-241-7091
Via email: ASCIT@mssm.edu
Web: https://libguides.mssm.edu/ascit

General Note:
Firefox is the preferred browser for launching f5 software, while Chrome may sometimes have troubles.

Instructions on F5 setup on Linux (such as Ubuntu) system: 
On your Ubuntu machine go to https://mshmsvpn.mssm.edu/my.policy and log in using your password and Azure MFA at prompt.  The welcome page will have many boxes.  Click on linux_deb  and download the f5 software.  Open a terminal on Ubuntu and move to the folder that contains the download, then: sudo apt install /path/to/package/name. deb/opt/f5 will be created.  Click on “tunnel” and on the f5 popup, “Choose” /opt/f5/vpn/f5vpn and you should be in.