03-01-2016 12:15 AM - edited 02-21-2020 08:42 PM
Hi.
We have Anyconnect (ver. 4.2.10135) configured on ASR1000RP1 (IPSec IKEv2).
VPN is working from desktop, but doesn't work through RDP connection.
In the XML file the following settings about remote session:
<WindowsLogonEnforcement>SingleLocalLogon</WindowsLogonEnforcement>
<WindowsVPNEstablishment>AllowRemoteUsers</WindowsVPNEstablishment>
but anyconnect doesn't work: error "VPN establishment capability from a remote desktop is disabled. A VPN connection will not be established."
Can you help with this issue?
03-01-2016 12:54 AM
please check the XML downloaded to the client pc do you see the setting getting pushed?
location in pc.......C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile
have you mapped the correct xml to the group-policy?
eg:
#Rohan
03-02-2016 05:49 AM
Rohan,
I found settings anyconnect profile:
crypto vpn anyconnect profile "name" bootflash:anyconnect.xml
but I can't find how to attach it to the ikev2 policy
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide