We just had a very similar occurrence. I was setting a port for PXE boot, but the device would not come up, saying no DHCP response. removed this line form the interface and it worked:no mls qos trust dscp We have also found setting portfast on is u...
After a TAC case we ended up upgrading the client to 3.0.07059 and that corrected this issue. I cant validate the technicalities of why it wouldnt work at v .4235, only that .07059 allowed the XML profile to be updated and an entry in the log file ...
We have the same problem. As soon as 'always on' was turned on, all the clients could not connect at one time or another (hit and miss). Quick fix is to delete the XML profile in C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile...