The user is running Macintosh, Leopard 10.5.8. It is a MacBook Pro. I tried to download the VPN client for the Mac, version 4.9.01.0180. When the VPN client has finished downloading to the desktop and we are ready to install the VPN client, the laptop is locked up. The user had to Force Quit the computer before the Mac can restart. It looks like this VPN client is not compatible with this version of Macintosh. Have you run into this type of problems before? Do you have any suggestion on how to install the Cisco VPN client for Macintosh, ver. 10.5.8?
Sorry I did not follow up to the forum. I got prices for the "full" SSL VPN license for the 5500 series of 10 users @ $850, 25 users @ $2,105. For the AnyConnect Essentials version, 250 concurrent users for $102. Part number was L-ASA-AC-E-5510.
However, for now we are not doing anything, because the plain VPN client has been working for okay our 10.5 and 10.6 macs, and they just added a 64-bit Win version.
Yes, that looks correct to me. It should cost about $250 or so for 5000
Quite a bargain in the Cisco world..
On Fri, Feb 19, 2010 at 2:26 PM, dianewalker <
I am not expert on this, but from the link:
• Cisco AnyConnect Essentials: This feature offers basic AnyConnect
tunneling support for customers who require VPN remote access but do not
need Cisco Secure Desktop features or clientless SSL VPN capabilities.
AnyConnect Essentials supports mobile connectivity options with the
AnyConnect Mobile license. Upgrade to the full-featured AnyConnect Premium
license (traditional AnyConnect) is available by applying a traditional
AnyConnect license or shared license to the ASA appliance.
So if you don't need secure desktop or clientless VPN this should be OK for
you. I think it also would not support voip because that requires vpn user
to user traffic which is likely not included.
If you have a part # I can tell you a cost. Essentials is basically free
wheras the full VPN licenses tend to be 5 digits in price..
On Thu, Feb 18, 2010 at 12:13 PM, dianewalker <
I should have asked what VPN server you are using? I have configured built in VPN client on 10.6 to conenct via IPSEC on my ASA 5510.
If you can, I would try AnyConnect. It is simple to setup and deploy for basic VPN needs.
Correct that AnyConnect is the current way to go. Also correct that ASA only comes with 2 seats.
However- 250 seats on an ASA5510 is only about $100! (Basically free in the Cisco world)
You need to be running 8.2. See this link for more info and part numbers for various ASA models.
The license is called AnyConnect Essentials.
We have not yet hit issues with OS 10.5, but our use of the VPN Client is pretty basic. However, as far as I can tell, this form of the VPN client seems on the way out: No Mac version version v5.x client has been provided, and, on the Windows side, no 64-bit support.
In the release notes for the latest Windows version ( http://www.cisco.com/en/US/customer/docs/security/vpn_client/cisco_vpn_client/vpn_client5006/release/notes/vpnclient5006.html#wp75888) Cisco says, "For x-64 support, customers should explore with their Cisco sales representative the use of the next-generation Cisco AnyConnect VPN Client."
As instructed I contacted my rep, and he wrote "The nice part of the current IPSec client is that it is essentially free and there are version that will support both Windows XP, Vista, & 7 32-bit and OS X up to 10.6 at least. But yes Cisco appears to have used the flip to 64-bit Windows OS’s as a reason to discontinue development for the IPSec client.
On the other hand the SSL client is pretty slick and can be configured to auto-install and auto-update for authorized users. In many ways from a support standpoint this is probably the way to go if you plan on larger deployment numbers.
The downside is that more than 2 concurrent SSL connections to an ASA is a licensed feature add-on, I believe the next level up is 25 concurrent users."
I'm taking his statement of "OS X up to 10.6 at least" as a bit of a hand-wave, since Cisco's latest release notes on the Mac client don't mention either 10.5 or 10.6, but instead make a big deal about how they now support Intel processors and have dropped support for 10.3.9; this is not particularly current news, despite the revision date on these notes of Dec 2009. ( http://www.cisco.com/en/US/docs/security/vpn_client/cisco_vpn_client/vpn_client49/release/notes/49client.pdf )
So, seems like we're being shoved toward AnyConnect to get support for current OSes. I can only assume the reason for this is to get us to buy licenses rather than using the "free" (with purchase of an ASA!) IPSec VPN Client.