After migrating to anyconnect 4.7.00136, we noticed that it created a local user in our AD with the name ciscoacvpnmcuser.
Does anyone knows why and is the safe to delete?
Solved! Go to Solution.
This is directly related to the new Management Tunnel Feature in 4.7
The 4.7 installer will also create a low-privileged user account (ciscoacvpnmcuser), to be used for running the MC (management connection) and downloader processes with limited privileges during a management tunnel connection.
This account (along with the associated user profile directory) will be removed during uninstall
"Management VPN Tunnel-(Requires ASDM 7.10.1) Ensures connectivity to the corporate network whenever the client system is powered up, not just when a VPN connection is established by the end user.
This feature allows patch management on systems which may not come in to the office frequently. Endpoint OS login scripts requiring corporate network connectivity will also benefit from this feature."
Source: Release notes
If you never plan on using this feature you can remove it although if you change your mind there may be some difficulty having this account created one again