Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9759
Views
3
Helpful
6
Replies

"Disconnect when You Log Off" - no option in AnyConnect?

jickfoo
Level 1
Level 1

‎10-08-2009 11:00 AM

I like AnyConnect and I'm on the verge of purchasing some ASA's.

My last issue is I need the ability to have the VPN Session to survive a logoff in certain rare situations. (ie, the user cant remember their cached credentials, etc)

The frustrating part of this is it looks as if the option exists as part of the IPSEC Client. Does anyone know if this can work on the AnyConnect client? Why wouldnt they add this feature ? Please help as I am using a demo and dont think I can get official support through TAC.

1 person had this problem
Labels:
0 Helpful
6 Replies 6

Richard Burts
Hall of Fame
Hall of Fame

‎10-08-2009 11:51 AM

Justin

I do not understand well what you are asking for. What does it really mean for "the VPN Session to survive a logoff in certain rare situations"?

And I am not clear what part of the IPSec client you are talking about that does this. Are you perhaps talking about the Start Before Logon capability (in which the PC will initiate the VPN connection before the PC gets to the Windows login)? If that is your question then the answer is Yes the Start Before Logon is supported in the AnyConnect client. I am installing some ASAs for a customer and we have the Start Before Logon working pretty well for the AnyConnect client.

If Start Before Logon is not what you are looking for, then can you clarify what it is that you are looking for?

HTH

Rick

HTH

Rick
0 Helpful

jickfoo
Level 1
Level 1
In response to Richard Burts

‎10-08-2009 11:59 AM

"Disconnect when You Log Off" is an option that you can enable/disable on the Cisco IPSEC client.

I basically want AnyConnect to run as a service. This way when users login to their laptops, if they do a LogOff (not a shutdown) the VPN session is still alive in the background.

This way if users forget their passwords, I can reset their passwords, have them log into a local profile, Connect to AnyConnect, Logoff, and Log back into their profile with the new password.

I dont want to use the GINA or the SBL unless it will run as an application.

Looks like this functionality exists in the IPSec client which is frustrating.

Thanks,

Justin

Richard Burts
Hall of Fame
Hall of Fame
In response to jickfoo

‎10-08-2009 12:28 PM

Justin

I had not been familiar with this option in the IPSec client. But I do see it now. I am now aware of seeing anything like this in the AnyConnect client.

HTH

Rick

HTH

Rick
0 Helpful

jickfoo
Level 1
Level 1
In response to Richard Burts

‎10-09-2009 04:49 AM

Just some more info:

AnyConnect does run as a service. When I log out of my pc, the ASA generates this log:

User IP SVC Message: 16/NOTICE: The user is logging off the system..

User IP SVC closing connection: User Requested.

any way to block this from happening ?

0 Helpful

Christopher Ursich
Level 1
Level 1
In response to jickfoo

‎07-12-2010 06:21 PM

This is an option in the client-side profile.  In ASDM on ASA 8.2, look under AnyConnect Client Settings.

0 Helpful

guillermoochoa
Level 1
Level 1
In response to Christopher Ursich

‎07-25-2012 03:26 PM

I have some issues after i Log Off of my windows machine. What is happening is that after i log off, and log on, the any connect, wich has a configuration of always on, activates the "disconnect" buttom and as i said its configured as always on, the "disconnect buttom" should be deactivated.

Regards

0 Helpful
Customers Also Viewed These Support Documents