Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3808
Views
0
Helpful
2
Replies

[AnyConnect] AllowRemoteUsers - Supported protocols

Patrick Tran
Level 1
Level 1

‎09-04-2014 03:01 AM - edited ‎02-21-2020 07:48 PM

Hi,

I need to use "Allow Remote Users" option on Cisco AnyConnect.

Which protocols are compatible with this option? It works fine with Microsoft RDP but will it work with Citrix, VDI....?

Thanks for your help,

Patrick

Labels:
0 Helpful
2 Replies 2

nkarthikeyan
Level 7
Level 7

‎09-04-2014 03:53 AM

Hi,

 

Excerpt from a Anyconnect Q&A:

Q. Does the Cisco Secure Remote Access VPN solution support Cisco virtual desktop infrastructure (VDI)?
A. With Cisco Adaptive Security Appliance Software Version 9.0 , native clientless support for Citrix VDI deployments has been updated to include XenApp 6.5,
and the latest versions of XenDesktop (up to 5.5) both for laptops, desktops, and mobile devices (Citrix Mobile Receiver). Support for VMware VDI deployments is
offered as well (through smart tunnels). As in past releases , AnyConnect supports VDI deployments, whether Citrix or VMware.

 

 

For More Details:

http://www.cisco.com/c/en/us/products/collateral/security/anyconnect-secure-mobility-client/qa_c67-713763.pdf

Regards

Karthik

0 Helpful

Patrick Tran
Level 1
Level 1
In response to nkarthikeyan

‎09-04-2014 05:46 AM

Hi Karthik,

Thanks for your answer :)

I know that AnyConnect supports VDI deployments.

My question is different.

From my computer A, I use remote desktop on another computer B.

B has AnyConnect installed and can connect to our ASA infrastructure using SSL VPN.

When I connect AnyConnect VPN from remote desktop, AnyConnect automatically disconnects because of the client profile default setup. By default, Local Users Only is selected.

 

Here is Cisco ASA documentation:

Windows VPN Establishment—Determines the behavior of AnyConnect when a user who is remotely logged on to the client PC establishes a VPN connection. The possible values are:

  • Local Users Only—Prevents a remotely logged-on user from establishing a VPN connection. This is the same functionality as in prior versions of AnyConnect.
  • Allow Remote Users—Allows remote users to establish a VPN connection. However, if the configured VPN connection routing causes the remote user to become disconnected, the VPN connection terminates to allow the remote user to regain access to the client PC. Remote users must wait 90 seconds after VPN establishment if they want to disconnect their remote login session without causing the VPN connection to be terminated.

I assume that Cisco AnyConnect client can detect that user is logged with RDP .

Can AnyConnect detect others type of Remote Desktop (VDI, Xen...) with this option ?

Thanks,

Patrick

0 Helpful
Customers Also Viewed These Support Documents