All vendors requiring connectivity to applications residing within the Secure Clinical Subnet (SCSN) must accomplish that connection using a secure authenticated encrypted methodology that will provide accountability for each connection event.

The three approved methods of VPN access for vendors are described here.