03-15-2013 10:26 AM
A bit of a Catch-22 here: I am trying to delete VPN Group Policies but receive the error message that the policy is in use by a particular Connection Profile. When I try to delete the Connection Profile I receive the message that it is in use by a VPN Group Policy..
What else is there to delete or do I have to use the CLI?
Thank you in advance!
Solved! Go to Solution.
03-15-2013 11:08 AM
You don't have (and won't be able) to delete connection profile, but you should remove your grop policy from the connection profile.
I.e. from cli:
tunnel-group SOME_GROUP general-attributes
no default-group-policy SOME_GP
After that, group policy can be deleted as you wish, as long as it not used somewhere else.
03-15-2013 11:08 AM
You don't have (and won't be able) to delete connection profile, but you should remove your grop policy from the connection profile.
I.e. from cli:
tunnel-group SOME_GROUP general-attributes
no default-group-policy SOME_GP
After that, group policy can be deleted as you wish, as long as it not used somewhere else.
03-19-2013 07:21 AM
Thanks, Andrew. I used the CLI like you suggested.
11-08-2017 10:34 AM
thanks
07-24-2019 10:56 AM
I realize this thread is extremely old. However, if you want to do this via GUI you can click the Group Policy and select the Assign Button. From there uncheck the Public IP that is selected.
Now, you can delete the group policy, and then the connection profile. Apply and you're good to go!
Hope this helps!
JB
03-28-2022 08:11 AM
You can also use these two commands that clear both the tunnel group attributes and group policy attributes from the ASA configuration:
clear configure tunnel-group <tunnel-group-name>
clear configure group-policy <group-policy-name>
Dallas
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide