cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3462
Views
5
Helpful
17
Replies

Cisco AnyConnect VPN Settings.

Cash2106
Level 1
Level 1

Hi there,

i am new to cisco environment, can anyone tell me how to configure the AnyConnect VPN in Cisco ASDM, i have ASA Version 8.4(3) and ASDM Version 6.4(7).

 

i have tried to do it through AnyConnect wizard, but i am stuck on license configuration. i dont know how to set up license, because i have already created a license named ciscocert through the commands i searched from google and then downloaded it in system but i dont know how to authenticate it and then use it for cisco anyconnect.

please anyone can tell me how set it up properly with the certificate and make it up and running,

i will be really thank full to you please help me.

17 Replies 17

@MHM Cisco Worldthanks for your concern, but as i mentioned my ASA Version 8.4(3) and ASDM Version 6.4(7) will it effect on the setup or the same configuration goes for this older version.

and in tha package for cisco anyconnect in the firewall flash is 2.5.2014 version, which is very old. and i dont know how to get the latest version package of cisco any connect, i tried to download it from cisco website but its asking for support or something so i am not able to download it for such reasons.

 

my concern is can i continue this anyconnect vpn with these old model firewall and asdm old model and anyconnect old model package file ? please acknowledge.

Marvin Rhoads
Hall of Fame
Hall of Fame

I think you mean to ask about the certificate and not the license.

Do you want to use this for lab only or for end users? If lab only you can use the self-signed certificate and just click past the warnings about not trusting it. If you want a real certificate from a public Certificate Authority then you need to create a Certificate signing Request (CSR) on the ASA and send it to your CA of choice and then download and install the signed certificate they give you. If will then be available for use on the ASA - see the link posted earlier by @MHM Cisco World 

@Marvin Rhoads  i am using it for end user, and yes i need a certificate, but i dont know how to get a signing certificate, and will it cost me anything ? i mean i have the license of anyconnect, but i dont know how can i get the certificate, can you tell me the procedure how can i get the proper certificate for my cisco anyconnect and will it cost me anything or is it for free ? and can you tell me from which website i can get it, i have a certificate created in cisco asa asdm and saved it in my computer, and i know i have to submit it to some website as you mentioned for proper certificate but i dont know how to do that and i dont know if its free or not. please guide me..

Cash2106
Level 1
Level 1

@Marvin Rhoads 

@MHM Cisco World 

 

can i use this Anyconnect VPN with the old model which i have 2.4.2014 or should i download the latest version from cisco ?

but when i am downloading it from cisco its giving me an error of Service Contract Required, which i dont have. is there any way i can get the latest version of Cisco Anyconnect and cisco ASDM latest version.

Marvin Rhoads
Hall of Fame
Hall of Fame

AnyConnect current releases do indeed require an AnyConnect service contract to download. There is no getting around this legally.

Getting a certificate from a public CA also costs money. Not very much though - namecheap for example offers them for about $5.88 per year to start.

https://www.namecheap.com/security/ssl-certificates/

@Marvin Rhoadsthanks for your concern, and what if i configure the AnyConnect VPN without certificate ? will it work properly or not. i mean right now i am in hurry to configure it on end user but may be later on i will spend it for certificate,

 

but my concern is right now i need it urgently so can i continue this without certificate and make it up and running on client end where i want to give access of my network ?

You can use a self-signed certificate on the ASA but every time the user connects they will have to click past the warning that the server (your ASA) is untrusted and not secure.

Most people prefer not to do this for a "secure" connection.

@Marvin Rhoadshi, i have configured all the settings as mentioned on the link which @MHM Cisco World given,

but i am facing issue while connecting to the vpn, after giving the gateway ip it asks for credentials and then i click yes for certificate and after that instead of connecting its giving me error which i have attached in this post. even my firewall is turned off in the laptop but still i am not able to connect to the vpn please check and acknowledge. test.jpgtest1.jpg

Is this only affecting this PC or all PCs in your network?  You could try the troubleshooting steps outlined in the following link.

https://www.petenetlive.com/KB/Article/0000347

 

--
Please remember to select a correct answer and rate helpful posts

@Marius Gunnerudi have tried these steps, even i have uninstalled and install again but no hope. 

as @Marvin Rhoads said my AnyConnect version is old. can you please tell me how can i upgrade it because i bought this firewall from a local vendor and obviously i dont have the service contract so can you please tell me what i can do to keep them updated and use this service please.

The AnyConnect 2.4 client you are using is not supported on any modern operating system.

@Marvin Rhoads 

 

can you please tell me how can i upgrade it because i bought this firewall from a local vendor and obviously i dont have the service contract so can you please tell me what i can do to keep them updated and use this service please.

You could try contacting your local vendor and ask if they can assist with this.  However, without a support contract you will have very limited access, or no access at all, to software.

--
Please remember to select a correct answer and rate helpful posts
Review Cisco Networking for a $25 gift card