Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2873
Views
5
Helpful
2
Replies

Cisco Anyconnect Secure Mobiliy Clent\How set default group

Go to solution
marramix01
Level 1
Level 1

‎09-12-2014 10:51 AM - edited ‎02-21-2020 07:49 PM

I would like to know if there is a way to set up the default group in the Cisco Anyconnect secure Mobility Client (ssl vpn) 

 

For example: In our company we have more than one ssl vpn group that are available to remote users (based on their job roles, access, etc) 

 

I would like to set up a specific group to be the default group - e.i - ssl-companyname to always be the group that shows on the drop down menu  when users are trying to get on vpn. 

 

The group should show under the authentication window after clicking on 'connect'

 

Thanks again, 

 

marramix01

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Dinesh Moudgil
Cisco Employee
Cisco Employee

‎09-12-2014 04:29 PM

Hi,

You can allow the users to connect to different connection-profile by using group-alias or group-url .
Group-alias allows you to select via a drop down menu and group-url allows you to directly land your connection to the interested connection profile.

If you do not use group-alias or group-url , the connection defaults to DefaultWEBVPNGroup .
If you want to use this default group for the users, use the following commands:

ciscoasa(config)#tunnel-group DefaultWEBVPNGroup webvpn-attributes
ciscoasa(config-tunnel-webvpn)#group-alias <group-name> enable

Make sure to enable menu selection via these commands:-
ciscoasa(config)#webvpn
ciscoasa(config-webvpn)#tunnel-group-list enable

 

Ref:-
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/98580-enable-group-dropdown.html#cli

Regards,
Dinesh Moudgil

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/

View solution in original post

2 Replies 2

Go to solution
Dinesh Moudgil
Cisco Employee
Cisco Employee

‎09-12-2014 04:29 PM

Hi,

You can allow the users to connect to different connection-profile by using group-alias or group-url .
Group-alias allows you to select via a drop down menu and group-url allows you to directly land your connection to the interested connection profile.

If you do not use group-alias or group-url , the connection defaults to DefaultWEBVPNGroup .
If you want to use this default group for the users, use the following commands:

ciscoasa(config)#tunnel-group DefaultWEBVPNGroup webvpn-attributes
ciscoasa(config-tunnel-webvpn)#group-alias <group-name> enable

Make sure to enable menu selection via these commands:-
ciscoasa(config)#webvpn
ciscoasa(config-webvpn)#tunnel-group-list enable

 

Ref:-
http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/98580-enable-group-dropdown.html#cli

Regards,
Dinesh Moudgil

P.S. Please rate helpful posts.

Cisco Network Security Channel - https://www.youtube.com/c/CiscoNetSec/

Go to solution
lmksolutions
Level 1
Level 1
In response to Dinesh Moudgil

‎12-21-2016 02:54 AM

Thanks Dinesh, been looking for this nougat of information for hours :)

0 Helpful
Customers Also Viewed These Support Documents