Can any one help me to find out how to Force Anyconnect to connect automatically after windows login using xml profile and certificate authentication ?
the action should be completly transparent to enduser .
I would recommend using the Trusted Network detection and Always-On feature of Anyconnect. When Anyconnect detects that the user is not on an internal trusted domain, it can force a connection to the ASA head-end specified in the xml profile. If you set up certificate authentication on the ASA tunnel-group, then this would be seamless to the user as well.