Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
819
Views
0
Helpful
1
Replies

ikev2 anyconnectdial in config problems (Client win10) with ikev2profile.xml damage ?(manually configured)

Go to solution
1pdemharter
Level 1
Level 1

‎11-08-2020 10:05 AM

Hi all,

 

I want to change my asa vpn dial-in to anyconnect ikev2. Because I cannot useASDM, I configured all manually. All seems to works fine up to this step:

 

08.11.2020


18:39:09 Contacting 172.16.10.1.
18:40:32 User credentials entered.
18:40:32 Establishing VPN session...
18:40:32 The AnyConnect Downloader is performing update checks...
18:40:32 Checking for profile updates...
18:40:34 Downloading AnyConnect VPN Profile - 100%
18:40:34 Checking for product updates...
18:40:34 Checking for customization updates...
18:40:34 Performing any required updates...
18:40:34 The AnyConnect Downloader updates have been completed.
18:40:40 Connection attempt has failed. <-----

 

I have to mention, that I created the xml profile with notepad+ editor

 

A  look at the profile show that my profile was changed (?) from this:

 

<?xml version="1.0" encoding="UTF-8"?>
<AnyConnectProfile xmlns="http://schemas.xmlsoap.org/encoding/">
<ClientInitialization>
<WindowsVPNEstablishment>AllowRemoteUsers</WindowsVPNEstablishment>
<WindowsLogonEnforcement>SingleLogon</WindowsLogonEnforcement>
</ClientInitialization>
<ServerList>
<HostEntry>
<HostName>my_name1</HostName>
<HostAddress>my.name.info</HostAddress>
<PrimaryProtocol>IPsec</PrimaryProtocol>
</HostEntry>
</ServerList>
</AnyConnectProfile>

 

to this (I saw in the notepad+ that all CR/LF where replace by LFs only !!!!!!!!!!

 

<?xml version="1.0" encoding="UTF-8"?><AnyConnectProfile xmlns="http://schemas.xmlsoap.org/encoding/">
<ClientInitialization>
<WindowsVPNEstablishment>AllowRemoteUsers</WindowsVPNEstablishment>
<WindowsLogonEnforcement>SingleLogon</WindowsLogonEnforcement>
</ClientInitialization>
<ServerList>
<HostEntry>
<HostName>myname</HostName>
<HostAddress>my.name.info</HostAddress>
<PrimaryProtocol>IPsec</PrimaryProtocol>
<HostEntry>
<ServerList>
</AnyConnectProfile>

 

A second try to dial in fails instantly. I have to mention, that I copy the *.xml profile manually via fat32 usb stick to the ASA. Copy firmware stuff with this stick directly via ASA USB Ports works w/o problems.

I'm not sure, but it seems that by copying manually, thee xml-profile gets corrupted?

Any ideas, what happens? My thx in advance.

 

Pete

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
1pdemharter
Level 1
Level 1

‎11-23-2020 09:12 AM

Hi all,

 

I found a solution, copy the .xml file via FTP onto the ASA and it works.

 

Pete

View solution in original post

0 Helpful
1 Reply 1

Go to solution
1pdemharter
Level 1
Level 1

‎11-23-2020 09:12 AM

Hi all,

 

I found a solution, copy the .xml file via FTP onto the ASA and it works.

 

Pete

0 Helpful
Customers Also Viewed These Support Documents