01-19-2016 10:19 AM - edited 03-08-2019 05:38 PM
Hello!
I am having an unusual issues with AnyConnect Web Security (4.2.x) when NTD is enabled. The trusted network detection works just fine when it sees that the connection is in trusted network and the traffic passes through as normal, but when I am in public network or untrusted network, it says the "Web Security Service Unavailable" and literally kills all traffic. When I have the .wso or .xml file without NTD enabled, again, works great but the catch is it sends all http traffic to cloud even the connection is in the trusted network.
I have tried unstalling and re-installing the client and clearing all profiles manually, but still no good.
Event log shows:
Event 256, acwebsecapi
ERR | Thread 0099CA10 | ClientComm : Error in receive. Code : -1
ERR | Thread 0099CA10 | Socket is not available
Before reaching out to TAC for the help, I wonder if anyone in this community has encountered similar issue and got it resolved. If so, it would be a great help if you could share..
Thanks!
Josh
01-19-2016 10:23 AM
Hi Josh,
As this issue requires some in depth investigation, I would recommend opening a TAC case with the above information, also please make sure to attach a DART bundle from a client after reproducing the issue.
Sincerely,
Edan Mudachi
01-19-2016 11:01 AM
Hm.. Ok. Thanks for the reply. I am opening the case with TAC right now :)
Josh
12-12-2016 12:46 PM
Josh,
I have a question did you ever get this figured out with TAC. We just had this issue come up in our environment.
Thanks,
Chris
12-12-2016 04:24 PM
Hello Chris,
Looking back at the TAC case that Josh had opened, it seems like this may have been an issue with the Windows FW. It looks like it worked after Windows Firewall had been disabled, but I don't really see any notes regarding a root cause and/or a definitive answer. Maybe Josh can chime in if he gets the chance to review this thread.
I suppose the Windows Firewall could have been blocking one of the following : AnyConnect WebSecurity directory and/or acwebsecagent.exe/vpnui.exe and/or ports 5001,5003.
You may want to try that and see if it helps.
Thanks!
-Dennis M.
12-13-2016 05:28 AM
Hello Dennis,
Thanks for the response. Firewall settings is something that we first looked into. This problem just all of a sudden started happening over the last couple of weeks. Once I get a problem laptop in from our end users I may start a TAC Case. We don't run Windows Firewall and the Firewalls we do run don't have anything blocking this.
Thanks,
Chris
12-13-2016 01:17 PM
Hello Chris,
You're very welcome! :) Sorry the fix didn't seem to relate to your environment, but at least now something can be ruled out. As you already stated I would then recommend a TAC case whenever you need further assistance.
Thanks!
-Dennis M.
12-15-2016 10:35 PM
Sorry, I just saw your message. In my case it was the packaging (Marimba) tool which had some corrupt and incorrect files named pushed to C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Web Security\
The fix was a fresh re-install with one step newer release.
I suggest you to give a try with a complete uninstall and install with newer release and see how that goes.
Josh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide