Hi Community,

I'm still troubleshooting an issue with my FlexVPN server-client setup. Currently, I'm testing on a freshly configured Cisco 4331 running IOS-XE Version 17.09.06.

On the client side, I'm using Cisco AnyConnect Secure Client for Windows (tested with versions 4.8 and 4.9). However, after successfully obtaining the certificate and entering the username and password, the connection fails, and the client session is terminated.

From the router logs, I can see that the session is being closed by the client, but I can't determine the exact reason behind this behavior.

I would really appreciate any insights or guidance on resolving this issue. Debug logs and router configuration are available at the following link: https://drive.google.com/drive/folders/1gYoGXAsul3clMQeGL3nH8bei5JhWqG8P?usp=sharing

Thanks in advance for your help!

Mar 5 12:10:18.899: IKEv2:(SESSION ID = 843864,SA ID = 1):Process delete request from peer
Mar 5 12:10:18.899: IKEv2:(SESSION ID = 843864,SA ID = 1):Processing DELETE INFO message for IKEv2 SA [ISPI: 0x77C908320D87CF8A RSPI: 0x4193F49AB2B28548]
Mar 5 12:10:18.900: IKEv2:(SESSION ID = 843864,SA ID = 1):Check for existing active SA
Mar 5 12:10:18.900: IKEv2:(SESSION ID = 843864,SA ID = 1):Delete all IKE SAs
Mar 5 12:10:18.900: IKEv2:(SESSION ID = 843864,SA ID = 1):Deleting SA
Mar 5 12:10:18.902: IPSEC(key_engine): got a queue event with 1 KMI message(s)
Mar 5 12:10:18.902: IDB is NULL : in crypto_ipsec_key_engine_delete_sas (), 6338
Mar 5 12:10:18.902: IPSEC:(SESSION ID = 843864) (key_engine_delete_sas) rec'd delete notify from ISAKMP
Mar 5 12:10:18.903: IPSEC:(SESSION ID = 843864) (key_engine_delete_sas) delete SA with spi 0xCAADF8BB proto 50 for 94.27.58.190
Mar 5 12:10:18.905: IPSEC:(SESSION ID = 843864) (delete_sa) deleting SA,