Solved: Moniter Anyconnect (Secure Client) Deployments from Firepower

Wrecktangle · ‎07-02-2024

During a new Anyconnect/Secure Client upgrade, is there a way to view the status of an individual user's installation (or multiple users!) from either the FTD or FMC? I recall this capability existing with ASA and haven't found a way to perform the same in Firepower. I am aware of this possibility with other deployment tools such as SCCM or Intra. Just wondering does this capability exist within Firepower?

tvotna · ‎07-03-2024

Not sure about FMC, but you can use CLI:

show vpn-sessiondb detail anyconnect | i Username|Client Ver

View solution in original post

Marvin Rhoads · ‎07-03-2024

In addition to the cli command shared by @tvotna you can use the Analysis > Users > User Activity menu and then filter on Event = VPN User Logon. Be sure to increase your default time window to cover the period you want to see. Of course, we cannot see users who have not connected. Normally, a user with an older version will be upgraded upon connect.

View solution in original post

tvotna · ‎07-03-2024

Not sure about FMC, but you can use CLI:

show vpn-sessiondb detail anyconnect | i Username|Client Ver

Marvin Rhoads · ‎07-03-2024

In addition to the cli command shared by @tvotna you can use the Analysis > Users > User Activity menu and then filter on Event = VPN User Logon. Be sure to increase your default time window to cover the period you want to see. Of course, we cannot see users who have not connected. Normally, a user with an older version will be upgraded upon connect.

Wrecktangle · ‎07-03-2024

Both options were not exactly what I was looking for. However, I was also unaware of these options, which are very helpful for the end result. Thanks for your answers!