08-16-2021 02:01 PM
Hello,
I'm trying to find an updated document that explains the procedure/steps in order to configure Anyconnect Before Logon on Win 10. The document below seems outdated as the it references some configuration parameters within the .xml file that no longer exist in Anyconnect Mobility version 4.10.x.
Can someone point me in the right direction?
Best, ~zK
Solved! Go to Solution.
08-18-2021 10:47 AM
Yes, I have the same Anyconnect version loaded on the ASA and my laptop.
Do you think it is a good idea to upload the DART file of my company laptop o this public platform?
08-18-2021 10:40 PM
I would agree with you - DART would contain too much information about your setup, which you won't be able to maskquarade. This should be a mandatory step for TAC case, as first thing they would ask you is DART file. However, you'll need to install DART on your PC, same as SBL, so if you can only do this from ASA headend then you are still stuck (btw, you could add it with 'anyconnect modules value vpngina,dart').
Have you tied up your tunnel-group with this specific group-policy? It won't be there by default, unless you tie them up together.
Could you please VPN to device (on your standard profile from where you want to push SBL, or from SBL profile), collect the following outputs and share them:
Based on these, we should see if your config for pushing SBL is correct.
BR,
Milos
08-19-2021 10:45 AM
@Rob Ingram.. @stsargen .. @Milos_Jovanovic ,... I was able to fix the issue. Everything is working as expected.
Here is what I had to do:
- Removed the commands I applied under the group-policy\webvpn
- Re-applied the same commands I applied under the group-policy\webvpn
anyconnect mtu 1300
anyconnect modules value vpngina
anyconnect profiles value Main_Profile type user
- Removed the .xml file under C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile
- Disconnected current Anyconnect vpn session
- Added the .xml file under C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile
- Re-conncted to Anyconnect vpn
- Rebooted
That resolved the issue.
I appreciate all of your assistance and time.
Best, ~zK
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide