Automate Cisco Any Connect VPN Client

Unanswered Question
Jan 13th, 2010
User Badges:

Dear Support,


I have created any connect vpn on ASA 5520. The VPN works fine. User is able to connect from its machine either windows or linux. My customer wants to automate the login process. He doesnot want the User ID and password prompt everytime. He wants his machine will automatically established VPN during startup and it should not prompt user id and password to login. It should automatically connect the any connect vpn client.


Moreover if it disconnects due to any reason it should automatically connect .


If anyhave has its solution kindly let me know. Looking forward to hear from you.


Thanks & regards,


Uzman.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sadiqallawati Sun, 03/21/2010 - 04:57
User Badges:

I have the same issue, but my termination point is Cisco IOS router instead on ASA. It will be really nice if we can get a solution for this.

Jennifer Halim Sun, 03/21/2010 - 05:10
User Badges:
  • Cisco Employee,

1) You can use Start Before Logon feature on AnyConnect (pls note, only works for Windows OS):

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809f0d75.shtml


2) For auto reconnect, by default, AnyConnect will automatically reconnect if there is network disruption.

There are other features of auto reconnect that you can configure through AnyConnect profile:

http://www.cisco.com/en/US/partner/docs/security/vpn_client/anyconnect/anyconnect24/administration/guide/ac03features.html#wp1113790


Hope that helps.

sadiqallawati Sun, 03/21/2010 - 05:30
User Badges:

Thanks haljienn,


But will this works with IOS SSL Router as well ??

Gnostech2010 Thu, 05/12/2011 - 13:20
User Badges:

Does someone have settings for Linux? Fedora 10?


Autoconnect and Connect using certs.


Thanks!

Jason

kremeznoy Mon, 02/13/2012 - 00:59
User Badges:

Hello, Jeniffer.


Could You help me to explain why does Start Before Login doesn't help me with auto-confirm (auto-writing) of user/password in my LAB:


Cisco ASA 5510

AnyConnect 3.0.5

Win7


Anytime when I start Anyconnect it asks me to write user/pass for VPN-Connection. I have done every step of this Guide:


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809f0d75.shtml

Daniel marcotte Mon, 02/13/2012 - 11:49
User Badges:

a certificat is the key for you I think. The certificat will be like a username password. That's what I use for my iPad and iPhone user.

kremeznoy Mon, 02/13/2012 - 22:53
User Badges:

Hi!


I have tested scheme with Certs, but my Win7 doesn't want to save Certificate once and for all.


It wants I click "Yes" for "Do You Want To Agree A Certificate" every time my PC starts. At the same time, during ReConnects in doesn't want confiramtion of Certificate from me.


How could I install Certificate once and for all time?


Good day.

Daniel marcotte Tue, 02/14/2012 - 05:55
User Badges:

I don't have an How To for win7 but here are some clue:

1- Start, Run, certmgr.msc this command can help you to see what certificat are saved on your computer

2- https://vpn.mycompany.qc.ca/+CSCOCA+/login.html give you a way to retreive the user certificate

username : WARNING, case sensitive

One-time Password (OTP) : generate and you can see it in ASDM : Configuration, Remote Access VPN, Certificate Management, Local Certificate Authority, Manage Users Database, View/Re-generate OTP.

3- access https://vpn.mycompany.qc.ca or the url you need to access to login to your VPN and did the URL bar of IE is in red? It should not be red. If it is red, you need to install the local Certificate Authority of your ASA


To install it, at the end of the URL in the address bar, click on Certificat error (translation from french to english)

show the certificat,

install the certificat, next

place all the certificat in this store, explore,

In french it's "Autorités de certification racines de confiance", OK, next, finish, yes Ok, OK

louisbaleg Fri, 05/04/2012 - 04:21
User Badges:

Have you got the procedure for an iPhone ?


AnyConnect 2.5

iOS 5.1

Cisco ASA 5510 v 8.4.1


Thanks

Actions

This Discussion