I have created any connect vpn on ASA 5520. The VPN works fine. User is able to connect from its machine either windows or linux. My customer wants to automate the login process. He doesnot want the User ID and password prompt everytime. He wants his machine will automatically established VPN during startup and it should not prompt user id and password to login. It should automatically connect the any connect vpn client.
Moreover if it disconnects due to any reason it should automatically connect .
If anyhave has its solution kindly let me know. Looking forward to hear from you.
Thanks & regards,
I have the same issue, but my termination point is Cisco IOS router instead on ASA. It will be really nice if we can get a solution for this.
1) You can use Start Before Logon feature on AnyConnect (pls note, only works for Windows OS):
2) For auto reconnect, by default, AnyConnect will automatically reconnect if there is network disruption.
There are other features of auto reconnect that you can configure through AnyConnect profile:
Hope that helps.
a certificat is the key for you I think. The certificat will be like a username password. That's what I use for my iPad and iPhone user.
I have tested scheme with Certs, but my Win7 doesn't want to save Certificate once and for all.
It wants I click "Yes" for "Do You Want To Agree A Certificate" every time my PC starts. At the same time, during ReConnects in doesn't want confiramtion of Certificate from me.
How could I install Certificate once and for all time?
I don't have an How To for win7 but here are some clue:
1- Start, Run, certmgr.msc this command can help you to see what certificat are saved on your computer
2- https://vpn.mycompany.qc.ca/+CSCOCA+/login.html give you a way to retreive the user certificate
username : WARNING, case sensitive
One-time Password (OTP) : generate and you can see it in ASDM : Configuration, Remote Access VPN, Certificate Management, Local Certificate Authority, Manage Users Database, View/Re-generate OTP.
3- access https://vpn.mycompany.qc.ca or the url you need to access to login to your VPN and did the URL bar of IE is in red? It should not be red. If it is red, you need to install the local Certificate Authority of your ASA
To install it, at the end of the URL in the address bar, click on Certificat error (translation from french to english)
show the certificat,
install the certificat, next
place all the certificat in this store, explore,
In french it's "Autorités de certification racines de confiance", OK, next, finish, yes Ok, OK