cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
2599
Views
15
Helpful
6
Replies

5505 Anyconnect essentials license clarification please

Dennis Newman
Level 1
Level 1

Have a "base" 5505 with the upgrade to 50 inside hosts.

I just added the ASA-AC-E-5505  25 Anyconnecr Essentials license key to that unit.

The show version now shows Anyconnect Essentials enabled, but the "total VPN Peers" is still at 10.

Do I have the ability to have 25 Anyconnect clients connect to my network? or am I limited to 10?

I have read many threads, but just get more and more confused.

Thanks

DWNewman

1 Accepted Solution

Accepted Solutions

npokhriy
Level 1
Level 1

hi Dennis,

If anyconnect essentials is enabled then we can connect 25 users.

Run command " sh vpn-sessiondb license-summary" "show vpn-sessiondb summary". It will show you the number of anyconnect users you can connect.

Regards,

Naresh

View solution in original post

6 Replies 6

npokhriy
Level 1
Level 1

hi Dennis,

If anyconnect essentials is enabled then we can connect 25 users.

Run command " sh vpn-sessiondb license-summary" "show vpn-sessiondb summary". It will show you the number of anyconnect users you can connect.

Regards,

Naresh

ahh thanks - yup show vpn-sessiondb summary gives me

Active Session Summary

Sessions:

                           Active : Cumulative : Peak Concurrent : Inactive

  SSL VPN               :       1 :         18 :               2

    Clientless only      :       0 :          5 :               2

    With client           :       1 :         13 :               1 :        0

  Totals                    :       1 :         18

License Information:

  IPsec   :     10    Configured :     10    Active :      0    Load :   0%

  SSL VPN :     25    Configured :     25    Active :      1    Load :   4%

                            Active : Cumulative : Peak Concurrent

  SSL VPN             :          1 :         18 :               2

  Totals              :          1 :         18

Active NAC Sessions:

  No NAC sessions to display

Active VLAN Mapping Sessions:

  No VLAN Mapping sessions to display

So that does show SSL VPN 25 configured

Thanks

Hi Dennis,

In case if you face any issue connecting more than 2 Anyconnect user than please check the following:

sh run all | in max

If you see "

vpn-sessiondb max-anyconnect-premium-or-essentials-limit 2 " than change it to 25.

Thanks

Jeet Kumar

I see

Result of the command: "show running-config all | in max"

logging flash-maximum-allocation 1024

no vpn-sessiondb max-session-limit

no vpn-sessiondb max-webvpn-session-limit

tls-proxy maximum-session 10

  max-object-size 1000

  download-max-size 2147483647

  upload-max-size 2147483647

  post-max-size 2147483647

  message-length maximum client auto

  message-length maximum 512

  no message-length maximum server

  no message-length maximum client

  no message-length maximum

  no message-length maximum server

  esp per-client-max 0 timeout 0:10:00

Jeet Kumar
Cisco Employee
Cisco Employee

Hi Dennis,

Just to add to what Naresh said, the other VPN is for IPsec VPN (Site to Site or Remote Access).

After adding the key if you check the show version you would see something like this:

Licensed features for this platform:

Maximum Physical Interfaces       : Unlimited      perpetual

Maximum VLANs                     : 100            perpetual

Inside Hosts                      : Unlimited      perpetual

Failover                          : Active/Active  perpetual

VPN-DES                           : Enabled        perpetual

VPN-3DES-AES                      : Enabled        perpetual

Security Contexts                 : 2              perpetual

GTP/GPRS                          : Disabled       perpetual

AnyConnect Premium Peers          : 2              perpetual

AnyConnect Essentials             : 25            perpetual

Other VPN Peers                   : 250            perpetual

Total VPN Peers                   : 250            perpetual

Shared License                    : Disabled       perpetual

AnyConnect for Mobile             : Enabled        perpetual

AnyConnect Essentials             : Enabled

AnyConnect for Cisco VPN Phone    : Disabled       perpetual

Advanced Endpoint Assessment      : Disabled       perpetual

UC Phone Proxy Sessions           : 100            perpetual

Total UC Proxy Sessions           : 100            perpetual

YOu can also check the same by  show vpn-sessiondb summary

Thanks

Jeet Kumar


Licensed features for this platform:

Maximum Physical Interfaces    : 8        

VLANs                          : 3, DMZ Restricted

Inside Hosts                   : 50       

Failover                       : Disabled

VPN-DES                        : Enabled  

VPN-3DES-AES                   : Enabled  

SSL VPN Peers                  : 2        

Total VPN Peers                : 10       

Dual ISPs                      : Disabled 

VLAN Trunk Ports               : 0        

Shared License                 : Disabled

AnyConnect for Mobile          : Disabled 

AnyConnect for Cisco VPN Phone : Disabled 

AnyConnect Essentials          : Enabled  

Advanced Endpoint Assessment   : Disabled 

UC Phone Proxy Sessions        : 2        

Total UC Proxy Sessions        : 2        

Botnet Traffic Filter          : Disabled 

This platform has a Base license.

Serial Number: JMX1629Z13J

Mine doesn't show the "perpetual" or the line for the number of anyconnect essentials - is that because I should have updated

from my ASA Software version from 8.2(5)?

thanks

Dennis