Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
422
Views
1
Helpful
3
Replies

cisco AnyConnect vpn connectivity not working.

abhjha2
Cisco Employee
Cisco Employee

‎12-14-2023 05:27 AM

Am unable to connect to the Sandbox VPN with the provided network address and credential.
The vpn connectivity works well on the laptop but not on any VMs running windows, any restriction in place ?

  • Lab's private VPN connection information:
    • Lab Network Address: devnetsandbox-usw1-reservation.cisco.com:20150
    • Username: xxxxx
    • Password: xxxxx

 

Labels:
Preview file
71 KB
0 Helpful
3 Replies 3

bigevilbeard
VIP
VIP

‎12-14-2023 07:33 AM

Hello @abhjha2 this will not work by default. You need to connect direct from your laptop or look a work around such as this https://community.cisco.com/t5/vpn/cisco-anyconnect-4-7-x-on-the-cloud-s-vm-with-rdp-connection/td-p/4411476

Hope this helps,

Please mark this as helpful or solution accepted to help others
Connect with me https://bigevilbeard.github.io

abhjha2
Cisco Employee
Cisco Employee
In response to bigevilbeard

‎12-16-2023 08:53 AM

Thank you @bigevilbeard for the response.

I followed the instruction as per the below link and created a profile using the VPN editor however unable to connect to the vpn. sharing code of  AnyConnectProfile.xml ), Any step i missed ?

 https://community.cisco.com/t5/vpn/cisco-anyconnect-4-7-x-on-the-cloud-s-vm-with-rdp-connection/td-p/4411476

 

<?xml version="1.0" encoding="UTF-8"?>
<AnyConnectProfile xmlns="http://schemas.xmlsoap.org/encoding/" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://schemas.xmlsoap.org/encoding/ AnyConnectProfile.xsd">
<ClientInitialization>
<UseStartBeforeLogon UserControllable="true">true</UseStartBeforeLogon>
<AutomaticCertSelection UserControllable="false">true</AutomaticCertSelection>
<ShowPreConnectMessage>false</ShowPreConnectMessage>
<CertificateStore>All</CertificateStore>
<CertificateStoreMac>All</CertificateStoreMac>
<CertificateStoreLinux>All</CertificateStoreLinux>
<CertificateStoreOverride>false</CertificateStoreOverride>
<ProxySettings>Native</ProxySettings>
<AllowLocalProxyConnections>true</AllowLocalProxyConnections>
<AuthenticationTimeout>30</AuthenticationTimeout>
<AutoConnectOnStart UserControllable="true">false</AutoConnectOnStart>
<MinimizeOnConnect UserControllable="true">true</MinimizeOnConnect>
<LocalLanAccess UserControllable="true">false</LocalLanAccess>
<DisableCaptivePortalDetection UserControllable="true">false</DisableCaptivePortalDetection>
<ClearSmartcardPin UserControllable="false">true</ClearSmartcardPin>
<IPProtocolSupport>IPv4,IPv6</IPProtocolSupport>
<AutoReconnect UserControllable="false">true
<AutoReconnectBehavior UserControllable="false">ReconnectAfterResume</AutoReconnectBehavior>
</AutoReconnect>
<SuspendOnConnectedStandby>false</SuspendOnConnectedStandby>
<AutoUpdate UserControllable="false">true</AutoUpdate>
<RSASecurIDIntegration UserControllable="false">Automatic</RSASecurIDIntegration>
<WindowsLogonEnforcement>SingleLocalLogon</WindowsLogonEnforcement>
<LinuxLogonEnforcement>SingleLocalLogon</LinuxLogonEnforcement>
<WindowsVPNEstablishment>AllowRemoteUsers</WindowsVPNEstablishment>
<LinuxVPNEstablishment>LocalUsersOnly</LinuxVPNEstablishment>
<AutomaticVPNPolicy>false</AutomaticVPNPolicy>
<PPPExclusion UserControllable="false">Disable
<PPPExclusionServerIP UserControllable="false"></PPPExclusionServerIP>
</PPPExclusion>
<EnableScripting UserControllable="false">false</EnableScripting>
<EnableAutomaticServerSelection UserControllable="false">false
<AutoServerSelectionImprovement>20</AutoServerSelectionImprovement>
<AutoServerSelectionSuspendTime>4</AutoServerSelectionSuspendTime>
</EnableAutomaticServerSelection>
<RetainVpnOnLogoff>false
</RetainVpnOnLogoff>
<CaptivePortalRemediationBrowserFailover>false</CaptivePortalRemediationBrowserFailover>
<AllowManualHostInput>true</AllowManualHostInput>
</ClientInitialization>
</AnyConnectProfile>

Preview file
163 KB
0 Helpful

bigevilbeard
VIP
VIP
In response to abhjha2

‎12-16-2023 09:42 AM

You can try and change the "WindowsVPNEstablishment" setting to "AllUsers".

If you want to allow both local and remote users to connect to the VPN from Linux, you can change the "LinuxVPNEstablishment" setting to "AllUsers".

This might work, if not I am not sure this will work.

Hope this helps.

 

Please mark this as helpful or solution accepted to help others
Connect with me https://bigevilbeard.github.io
0 Helpful
Customers Also Viewed These Support Documents