I am thinking of purchasing the ASA 5515-X for our company being that it is FIPS 140-2 validated for NIST compliance. We have about 50 users that require VPN access to our network which would require AnyConnect licenses I assume. I am unsure what we actually need (licenses) to achieve our end goal which is VPN access to our network while maintaining compliance. I have read somewhere that the security plus license comes bundled with the 5515-X, is this true? Is there a 50 users AnyConnect license available? What other licenses would we need? Any help would be greatly appreciated, thanks!
Yes it includes Security Plus. The only two current models that do not are the 5505 and 5512-X.
AnyConnect Premium licensing on the ASA is required to configure a FIPS-compliant remote access VPN (IPsec IKEv2 and NIST Suite B algorithms). Reference.
AnyConnect Premium licenses are sold based on number of users at levels of 10, 25, 50, 100, 250 users etc. The licenses are not additive (i.e. buying 2 ea. 10-users licenses doesn't get you a 20-user license); but there are upgrade SKUs available if you want to move from one level to another.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...