10-26-2020 07:22 AM
Hi
I have an anyconnect managment tunnel setup and its working as expected. I ran into an odd issue when I tried to deploy the Umbrella anyconnect module from the ASA. Umbrella wouldn't deploy to clients using the management tunnel vpn setup - the same setup applied to other vpn tunnels (without management tunnels) worked perfectly
I found the following Cisco Documentation for anyconnect 4.7
It states:
During a management tunnel connection, the following preference values are overridden, mostly to eliminate user interaction and to minimize tunnel interruptions:
..
AutoUpdate: false—No software updates are performed during a management tunnel connection.
..
Is this the reason Umbrella won't deploy on a management tunnel enabled vpn? If so, does this also apply to the Secure Mobility Client updates?
Thanks
Andy
Solved! Go to Solution.
10-26-2020 10:29 AM
Short answer yes this is the reason. You can't update the anyconnect client using management tunnel because it defeats the purpose of having anyconnect over management tunnel always established.
***** please remember to rate useful posts
10-26-2020 10:29 AM
Short answer yes this is the reason. You can't update the anyconnect client using management tunnel because it defeats the purpose of having anyconnect over management tunnel always established.
***** please remember to rate useful posts
10-26-2020 10:41 AM
Thanks for the response - makes sense. We'll be using the management tunnel vpn service for corporate managed devices only so we can manage anyconnect software updates some other way.
Cheers
Andy
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide