Anyconnect client predeploy with IPSEC Only profile
I seem to not be able to get an answer out of the TAC on this, I have an application where by I need to predeploy the anyconnect client for use with an ASA 5550, and I am not able to get it to work. The profile must be IPSEC only, there cannot be any https/SSL used at all for connection, discovery, setup or anything. https/ssl is blocked by default inbound, and having it changed is difficult. How can I create a VPN profile that does this, and copy it to a user system, along with teh Anyconnect client install. I am able to create and use a profile for the old Cisco VPN client.
You'd have to disable client services for the connection profile. It would prevent you from pushing any profile updates, AnyConnect updates etc., but it will still work if you already have the desired AnyConnect software and profile on your clients.
Most importantly, the pre-deployed profile will need to denote:
This will allow you to follow the procedure in this document while skipping the bits about using SSL for the initial profile deployment (and subsequent updates).
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :