07-26-2021 04:35 AM
Hello All,
Had an anyconnect remote access vpn running in my organisation with version 4.8 and now i wants to upload an new anyconnect image 4.10.01075 in my device. So would i need to just upload an new image in my device or anything else i have to change/modify so that my my users would connect with the new image.
Solved! Go to Solution.
07-26-2021 10:33 AM
On your Firepower Management Center web interface, go to Objects > Object Management > VPN > AnyConnect File and add the new AnyConnect client image files.
Modify your Connection Profile to ensure the correct anyconnect image is used.
07-26-2021 04:49 AM
You upload the anyconnect image(s) to the headend device (ASA or FTD), the clients then would automatically upgrade next time they connect to the VPN.
If you want to pre-deploy, then you'd use your system management solution such as SCCM to pre-deploy the new version of anyconnect.
If you use Umbrella, with the AnyConnect Roaming Security module, you can configure Umbrella to automatically upgrade anyconnect.
HTH
07-26-2021 06:54 AM
Hello Rob,
Thank you for your reply.
As per my understanding uploading just an image : anyconnect-win-4.10.01075-webdeploy-k9.pkg to device or in anyconnect configuration would work and nothing have to change in terms of configuration. Please correct if im wrong
07-26-2021 07:02 AM - edited 07-26-2021 07:03 AM
Well to be accurate, you need to upload the file and tell the ASA it's location, so yes you'd need to modify the configuration:-
ASA(config)# webvpn
Or example if using ASDM:-
https://www.petenetlive.com/KB/Article/0000704
07-26-2021 10:21 AM
Hello Rob,
I have an FTD running anyconnect vpn. What in ftd i need to do to activate the image like you suggested below command for ASA
ASA(config)# webvpn
07-26-2021 10:33 AM
On your Firepower Management Center web interface, go to Objects > Object Management > VPN > AnyConnect File and add the new AnyConnect client image files.
Modify your Connection Profile to ensure the correct anyconnect image is used.
07-31-2021 06:46 AM
Hello Rob,
Would my current connected users disconnect or FTD reboot after loading image on device.
07-31-2021 06:58 AM
No, the users won't be disconnected and you don't need to reboot the FTD.
07-26-2021 05:16 AM
2 ways you can do,
1 .upload to ASA/FTD, Clients get automatically updated.
2. if you have SCCM or centralised config pushing to client, i will take advantage that and push.
(make sure you tested test users before you complete roleout, seen some compatable issue after roleout - just want to heads up)
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide