Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
651
Views
0
Helpful
0
Replies

After ikev2 configuration (Cisco anyconnect client to ASA, ikev1 vpn dial in fails?

1pdemharter
Level 1
Level 1

‎11-23-2020 09:37 AM

Hi,

 

in the past I configured manually ipsec dial-in for remote workers using for Mac user Cisco IPSec client with Pre-Shared key. Additionally some L2L IPSec tunnel (ikev1 plus preshared keys).

Now some Win10 user should also dial-in and because of win10 restriction we have to us Cisco AnyConnect Client.

I comfigured the ikev2 stuf manually on the ASA (inclusive ASA certificate and create a ikev2profile.xml manually). All works fine, the win10 could establish a remote VPN Sesseion via ikev2 to the ASA. Unfortunatelyy my Mac user cannot dial in via ikev1 no longer. There is a short successfully connect, then I then, I see the ASA disconnect the VPN connection. I only use the same vpn-pool, anything else is configured only for ikev1 or ikev2?

Refering Cisco Ikev1 and ikev2 remote dial-i should work? I see some discussions here in the forum, but could find any helping me in solving this problem.

ikev1.  mac user, built in ipsec client / pre-shared key. ------ ASA

ikev2 win10 client, anyconnect client (certificate/profile) -----ASA

 

Many thx in advance for your help.

Peter

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents