Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
729
Views
0
Helpful
0
Replies

Cisco AnyConnect TND best practise

tiwang
Level 3
Level 3

‎08-09-2019 01:52 AM - edited ‎02-21-2020 09:43 PM

hi out there

We have been implementing Anyconnect (4.7) and are using the TND feature where I until now have been testing for the primary domain suffix and a trusted server in our DC

Previously we have been testing for the domain suffix and DNS servers. But because of that we have many locations this is a bit cumbersome to maintain the DNS server so I swapped to a trusted server instead

But remote locations experience often that the VPN connects even they are on a trusted network. Now have I tried to reduce it to a simple domain-suffix and see if this works better for us

 

What is your experience with it ? what are you using as criterias for this ?

Labels:
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents