Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
6972
Views
5
Helpful
3
Replies

Anyconnect plus vs apex

adeebtaqui
Level 4
Level 4

‎05-09-2021 01:38 AM

Please advise about the differences between between anyconnect plus and apex subscription on NGFW 2100. Can both support SSL browser based remote vpn access?

 

When is apex recommended?

0 Helpful
3 Replies 3

Rob Ingram
VIP
VIP

‎05-09-2021 01:46 AM - edited ‎05-09-2021 01:48 AM

@adeebtaqui SSL browser basesd Clientless WebVPN is not supported when using FTD software, it is still supported if using ASA software...but this maybe depreciated in future versions.

 

Refer to this conversation with Cisco

https://community.cisco.com/t5/security-ccp-discussions/ask-me-anything-network-security-firewall/td-p/4151559/page/2

 

If you want SSL browser based access VPN access, Cisco recommends Duo Network Gateway instead.

https://duo.com/docs/dng

 

Cisco AnyConnect licensing link with breakdown of comparisons.

https://www.cisco.com/c/dam/en/us/products/security/anyconnect-og.pdf

 

1.PNG

Apex is not recommended as such, but rather you choose it if you need the features listed above.

 

adeebtaqui
Level 4
Level 4
In response to Rob Ingram

‎05-09-2021 01:57 AM

As ssl not supported, which type of vpn would anyconnect establish for remote access? Will it be easy for remote users to se vpn without ssl?

0 Helpful

Rob Ingram
VIP
VIP
In response to adeebtaqui

‎05-09-2021 02:05 AM

@adeebtaqui 

SSL/TLS and IPSec are both supported when using AnyConnect VPN client.

It is just when connecting to a web browser (Clientless VPN/WebVPN) using https that is not supported.

 

Hope that clears things up for you.

 

 

0 Helpful
Customers Also Viewed These Support Documents