Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
176
Views
0
Helpful
3
Replies

anyconnect apex license issue with secondary box

smsdpk
Level 1
Level 1

‎01-31-2024 05:07 AM

Hi,

We have an issue with a secondary ASA in multi context not getting the shared Apex licenses, we need to get the secondary ASA added to the existing Apex license, can anyone please advise. 

 

Additional, please share the details. what are the different types of licenses and how licenses work cisco ASA?

 

 

Labels:
0 Helpful
3 Replies 3

tvotna
Spotlight
Spotlight

‎01-31-2024 11:23 PM

What is device model?

 

0 Helpful

smsdpk
Level 1
Level 1
In response to tvotna

‎01-31-2024 11:50 PM

It's ASA 5525-X.
0 Helpful

tvotna
Spotlight
Spotlight
In response to smsdpk

‎02-01-2024 12:37 AM

If you're asking about "shared licenses", they are not supported in multiple context mode as per this document:

https://www.cisco.com/c/en/us/td/docs/security/asa/asa912/configuration/general/asa-912-general-config/intro-license.html#ID-2148-00000ba2

Also, if you mean that "secondary" ASA is a "secondary/standby" ASA in a failover pair, you need not install licenses onto it. It will be able to handle VPN connections upon failover by utilizing "primary/active" "AnyConnect license enablement". I'm saying "enablement" because as soon as you install PAK-based AnyConnect license to the primary/active ASA in failover pair, it is unlocked for the entire hardware capacity and actual AnyConnect license count doesn't matter.

If you mean that "secondary" ASA is a standalone ASA in a VPN load-balancing cluster (or something like that) you need to install PAK based license or use shared licenses which have restrictions (AnyConnect 4 and 5 not supported, multiple mode not supported as per documentation).

 

0 Helpful
Customers Also Viewed These Support Documents