cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
843
Views
0
Helpful
2
Replies

Cisco AnyConnect - Chromebook

GW M
Level 1
Level 1

I have a Cisco 2911 VPN head-end device that is configured for IPSec, pre-shared keys, group authentication with a secret key. Is it possible to use the Cisco AnyConnect client on a Chomebook without L2TP to connect to the head-end VPN device? I don't want to use the option L2TP/IPsec VPN. I only want to use a IPSec.

 

Thanks

 

GW

2 Replies 2

Hello,

 

should be possible. Have a look at the document below (this is for IKEv2):

 

https://www.cisco.com/c/en/us/support/docs/security/flexvpn/115014-flexvpn-guide-cert-00.html

GW

 

Note that Georg says it should be possible. He did not say that it would be easy. There are at least 3 things you need to consider as you decide whether this is an approach that you want to use.

1) You are currently using a shared password for group authentication. Check to see if AnyConnect will support that. My experience with AnyConnect has been using SSL VPN and I know that AnyConnect does not have group authentication in that mode. I am not clear whether AnyConnect in IKEv2/IPSEC mode supports group authentication. You should check on that.

2) To use AnyConnect for IPSEC it needs to use IKEv2 (as Georg mentions). It is quite likely that your router is currently configured to use IKEv1. So you will need to add to the configuration support for IKEv2.

3) If you implement AnyConnect there may be some licensing requirements that you may need to implement.

 

HTH

 

Rick

HTH

Rick