Skip to main content



Secure connection to Cornell's campus networks

Use Cornell's virtual private network (VPN) service when you need to connect to campus resources that would otherwise be unavailable from distant networks, such as file servers and print services. CU VPN provides an added layer of security for accessing services hosted on Cornell's campus networks. This is useful when you're connecting via a network that may not be entirely secure, such as a hotel or airport network.


  • Encrypts network traffic between your computer and the Cornell campus network to protect against electronic eavesdropping.
  • Provides secure access to campus resources that would otherwise be unavailable from distant networks.
  • Enables your computer to appear and behave as if it's on campus.
  • Works with any network service without special settings--file sharing, printing, remote desktop, SSH, FTP, telnet, and web-based services have all been tested.

Who Can Use CU VPN

CU VPN can be used by students, faculty, trustees, staff, those with sponsored NetIDs, and selected affiliates. It is not available for alumni and retirees.

You must have a valid NetID to use CU VPN. If you don't have a NetID--for example, some contractors or vendors--you may be eligible for a Sponsored NetID. Contact the department you're working with for more information.

Departmental VPNs

The departmental VPN option allows units to establish and manage VPNs for exclusive use by their own staff, restricting access to individuals identified by and working within the unit. Departments can have one or more private networks, and individuals can be in as many as the department allows.

VPN and Cloud-Based Applications

CU VPN uses split tunneling, meaning only traffic to and from Cornell's campus networks goes over it, and you can access separate network resources at the same time. For example, Office 365, hosted by Microsoft, does not go over the tunnel, nor does any other Internet- or cloud-based service. As more applications move to the cloud, this is an important point. Cloud-based applications are secured using HTTPS, CUWebLogin, or Two-Step Login, but not through a VPN tunnel.

Service Details

Cornell's VPN service provides an added layer of security when you're connecting to university services from off campus. (It's required to connect to some services.)


No Fee

Regulated Data:

Not applicable or information not available.

Support Contact:

Was this page helpful?

Your feedback helps improve the site.