Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3604
Views
10
Helpful
7
Replies

Hardcode a Cisco AnyConnect Profile drop-down option

Go to solution
johnlloyd_13
Level 9
Level 9

‎07-07-2020 02:11 AM - edited ‎07-07-2020 02:47 AM

hi,

i configured an ASA FW for anyconnect RA VPN with two VPN policies/profile: a group policy (and a tunnel-group) for FULL TUNNEL and another for SPLIT TUNNEL.

how do i "hardcode" to consistently display the FULL TUNNEL group/profile on the anyconnect pop-up/drop down option (when you login for username/password)?

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to johnlloyd_13

‎07-08-2020 01:06 AM

They are alphabetical top down.

The last used profile is stored locally on the client machine automatically. It can only be removed by deleting the client side file (and it will be recreated next time a connection is made so it's not very useful to delete it).

View solution in original post

0 Helpful
7 Replies 7

Go to solution
Abheesh Kumar
VIP Alumni
VIP Alumni

‎07-07-2020 02:48 AM - edited ‎07-07-2020 02:49 AM

Hi,

You can create single tunnel group and multiple group policy (for split tunnel and tunnel all) so that there will be only one tunnel displayed on Anyconnect or you can create groupurl's also.  

 

HTH

Abheesh

Go to solution
johnlloyd_13
Level 9
Level 9
In response to Abheesh Kumar

‎07-07-2020 03:08 AM

hi abheesh,

thanks for your feedback! we need both FULL TUNNEL and SPLIT TUNNEL anyconnect option to be displayed for the users to choose from.

we just want the FULL TUNNEL to be consistently displayed as the first option. is there such option/command on the ASA?

0 Helpful

Go to solution
johnlloyd_13
Level 9
Level 9
In response to johnlloyd_13

‎07-07-2020 04:06 AM

it seem my issue was corrected by just re-configuring the split tunnel profile with no all caps.

i initially configured the tunnel-group profile (and alias) with text in ALL CAPS and it consistently showed as the first option in the anyconnect login pop-up.

0 Helpful

Go to solution
Abheesh Kumar
VIP Alumni
VIP Alumni
In response to johnlloyd_13

‎07-07-2020 05:18 AM

Hope your issue was solved.
0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to johnlloyd_13

‎07-07-2020 11:01 AM - edited ‎07-07-2020 11:02 AM

When I need to do this I simply prepend the tunnel-group names with a number. The dropdown list sorts numbers first. Something like:

1- FullTunnel

2 - SplitTunnel

Go to solution
johnlloyd_13
Level 9
Level 9
In response to Marvin Rhoads

‎07-07-2020 05:41 PM

hi marvin,

thanks for your feedback! is the tunnel-group (anyconnect profile) displayed alphabetically (top-down) or in the config order, i.e. the first policy configured is displayed first/on top on the drop down option.

also, i noticed the profile is "remembered" whenever re-login. how can i disable this? is it on the ASA or on client machine?

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to johnlloyd_13

‎07-08-2020 01:06 AM

They are alphabetical top down.

The last used profile is stored locally on the client machine automatically. It can only be removed by deleting the client side file (and it will be recreated next time a connection is made so it's not very useful to delete it).

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card