Support User Manuals

Cisco Systems ASA5515K9 Network Router User Manual

Open as PDF

of 1994

75-6

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 75 Configuring AnyConnect VPN Client Connections

Configuring AnyConnect Connections

• Enabling AnyConnect Client Profile Downloads, page 75-10

• Enabling Additional AnyConnect Client Features, page 75-11

• Enabling Start Before Logon, page 75-11

• Translating Languages for AnyConnect User Messages, page 75-12

• Configuring Advanced AnyConnect Features, page 75-14

• Updating AnyConnect Client Images, page 75-18

• Enabling IPv6 VPN Access, page 75-18

Configuring the ASA to Web-Deploy the Client

The section describes the steps to configure the ASA to web-deploy the AnyConnect client.

Prerequisites

Copy the client image package to the ASA using TFTP or another method.

Detailed Steps

Command Purpose

Step 1

anyconnect image filename order

Example:

hostname(config-webvpn)#anyconnect image

anyconnect-win-2.3.0254-k9.pkg 1

hostname(config-webvpn)#anyconnect image

anyconnect-macosx-i386-2.3.0254-k9.pkg 2

hostname(config-webvpn)#anyconnect image

anyconnect-linux-2.3.0254-k9.pkg 3

Identifies a file on flash as an AnyConnect client package file.

The ASA expands the file in cache memory for downloading to

remote PCs. If you have multiple clients, assign an order to the

client images with the order argument.

The ASA downloads portions of each client in the order you

specify until it matches the operating system of the remote PC.

Therefore, assign the lowest number to the image used by the

most commonly-encountered operating system.

Note You must issue the anyconnect enable command after

configuring the AnyConnect images with the anyconnect

image xyz command. If you do not enable the anyconnect

enable command, AnyConnect will not operate as

expected, and show webvpn anyconnect considers the

SSL VPN client as not enabled rather than listing the

installed AnyConnect packages.

Step 2

enable interface

Example:

hostname(config)# webvpn

hostname(config-webvpn)# enable outside

Enables SSL on an interface for clientless or AnyConnect SSL

connections.

Step 3

anyconnect enable

Without issuing this command, AnyConnect does not function as

expected, and a show webvpn anyconnect command returns that

the “SSL VPN is not enabled,” instead of listing the installed

AnyConnect packages.

previous next