cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
35902
Views
0
Helpful
10
Replies

Automate Cisco Any Connect VPN Client

uzmanhassan
Level 1
Level 1

Dear Support,

I have created any connect vpn on ASA 5520. The VPN works fine. User is able to connect from its machine either windows or linux. My customer wants to automate the login process. He doesnot want the User ID and password prompt everytime. He wants his machine will automatically established VPN during startup and it should not prompt user id and password to login. It should automatically connect the any connect vpn client.

Moreover if it disconnects due to any reason it should automatically connect .

If anyhave has its solution kindly let me know. Looking forward to hear from you.

Thanks & regards,

Uzman.

10 Replies 10

sadiqallawati
Level 1
Level 1

I have the same issue, but my termination point is Cisco IOS router instead on ASA. It will be really nice if we can get a solution for this.

Jennifer Halim
Cisco Employee
Cisco Employee

1) You can use Start Before Logon feature on AnyConnect (pls note, only works for Windows OS):

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809f0d75.shtml

2) For auto reconnect, by default, AnyConnect will automatically reconnect if there is network disruption.

There are other features of auto reconnect that you can configure through AnyConnect profile:

http://www.cisco.com/en/US/partner/docs/security/vpn_client/anyconnect/anyconnect24/administration/guide/ac03features.html#wp1113790

Hope that helps.

Thanks haljienn,

But will this works with IOS SSL Router as well ??

Unfortunately not on IOS SSL.

Does someone have settings for Linux? Fedora 10?

Autoconnect and Connect using certs.

Thanks!

Jason

Hello, Jeniffer.

Could You help me to explain why does Start Before Login doesn't help me with auto-confirm (auto-writing) of user/password in my LAB:

Cisco ASA 5510

AnyConnect 3.0.5

Win7

Anytime when I start Anyconnect it asks me to write user/pass for VPN-Connection. I have done every step of this Guide:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00809f0d75.shtml

a certificat is the key for you I think. The certificat will be like a username password. That's what I use for my iPad and iPhone user.

Hi!

I have tested scheme with Certs, but my Win7 doesn't want to save Certificate once and for all.

It wants I click "Yes" for "Do You Want To Agree A Certificate" every time my PC starts. At the same time, during ReConnects in doesn't want confiramtion of Certificate from me.

How could I install Certificate once and for all time?

Good day.

I don't have an How To for win7 but here are some clue:

1- Start, Run, certmgr.msc this command can help you to see what certificat are saved on your computer

2- https://vpn.mycompany.qc.ca/+CSCOCA+/login.html give you a way to retreive the user certificate

username : WARNING, case sensitive

One-time Password (OTP) : generate and you can see it in ASDM : Configuration, Remote Access VPN, Certificate Management, Local Certificate Authority, Manage Users Database, View/Re-generate OTP.

3- access https://vpn.mycompany.qc.ca or the url you need to access to login to your VPN and did the URL bar of IE is in red? It should not be red. If it is red, you need to install the local Certificate Authority of your ASA

To install it, at the end of the URL in the address bar, click on Certificat error (translation from french to english)

show the certificat,

install the certificat, next

place all the certificat in this store, explore,

In french it's "Autorités de certification racines de confiance", OK, next, finish, yes Ok, OK

Have you got the procedure for an iPhone ?

AnyConnect 2.5

iOS 5.1

Cisco ASA 5510 v 8.4.1

Thanks

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: