Hi @All I am trying to monitor IPSec VPN tunnels on my Cisco ASA using SNMP and the CISCO-IPSEC-FLOW-MONITOR-MIB.I am running into a discrepancy with the cipSecSAtunEncryptAlgo object (OID: 1.3.6.1.4.1.9.9.171.1.2.3.1.12).According to the MIB definit...
Forum Posts
I just installed Secure Client on my new Windows 11 desktop. When I click the "Connect" button, the UI quits immediately, before any login page pops up, without any error message. This issue persists after reinstall or reboot.UI versions:AnyConnect V...
HiWe have ran into an issue about Cisco Secure Desktop presence in the system.By running the ciscoasa# show webvpn csd ^ERROR: % Invalid input detected at '^' marker.we are getting error as the Cisco Secure Desktop (CSD) software...
Hello Guys, I will try to keep ti consize.So we are rolling out Windows 11 now instead of 10 with Intune on OOBE devices, and Secure Client does come preinstalled from Intune Configs as well. The issue we are facing is that, on the first VPN connect...
Hi everyone,I’m looking for guidance on upgrading our Duo Security Authentication Proxy to comply with the upcoming Certificate Authority (CA) bundle expiration, which requires action by February 2, 2026.Current EnvironmentFirewall: Cisco FTDDuo Auth...
Hi everyone,I need some advice regarding the upgrade of my Duo Security Authentication Proxy to comply with the upcoming Certificate Authority bundle expiration (Action Required by Feb 2, 2026).My Current Setup:Firewall: Cisco FTDDuo Auth Proxy Versi...
We’re using Azure SAML authentication with Cisco Secure Client, and are planning to enable Always-On VPN. Since the VPN client must reach Azure SAML endpoints to complete Single Sign-On, we need to add the relevant URLs to the Always-On allow host li...
Hi everyone,We are facing an intermittent issue with our AnyConnect VPN 2FA flow involving Microsoft Azure MFA.Architecture / Flow: Cisco AnyConnect Client -> Cisco ASA -> Cisco ISE (Acting as RADIUS Proxy) -> Windows NPS (with Azure MFA Extension) -...
Cisco IOS XE Software, Version 17.18.01a appxk9 None Smart License Noneuck9 None Smart License Nonesecurityk9 securityk9 Smart License securityk9ipbase ipbasek9 Smart License ipbasek9 No matter what example or guide I use, there is such a random am...
!! Last configuration change at 17:52:14 UTC Mon Dec 15 2025!version 15.9service timestamps debug datetime msecservice timestamps log datetime msecno service password-encryption!!! Last configuration change at 17:58:54 UTC Mon Dec 15 2025!version 15....
i want to establish a clientless SSL VPN connection to the ASA to download the AnyConnect clientsoftware.i logged in from remote host which is pc-c from browseri enteredhttps://209.165.200.226 for the SSL VPN but i cannot reach what is/are issues? p...
Hello ,I configured FlexVPN IKEv2 Remote Access VPN as guided herehttps://www.cisco.com/c/en/us/support/docs/security/flexvpn/200555-FlexVPN-AnyConnect-IKEv2-Remote-Access.html#toc-hId-936641904I started to notice I have issue loading the webpages su...
I've got a strange issue where an IKEv2 VPN terminated on an IOS G2 router is not setting the DNS suffix (DHCP option 15). This can be observed on both Windows (built-in VPN client) and Android (also built-in VPN client).The same router also has L2TP...
Good day!actually cannot find info...My config on ISE with 3rd party 2FA works fine...but for all VPN users.I have a several AD groups with different access levels defined on ISE.How and where on ISE i can make this happen?I have MAIN VPN policy set,...
Hi allI am setting up a remote access VPN from Windows clients to ASA version 9.3(3) using native IKEv2 on the client, and machine authentication only. Everything seems to work fine as far as the ASA is concerned, but immedaitely after the VPN negot...
