we currently have a remote access VPN for our 3rd parties which is client less and perhaps due to missconfiguration it also installs client on their mahcine (whihc never gets used), here is the current cofnig:
"show vpn-sessiondb anyconnect " shows the following:
Protocol : IKEv2 IPsecOverNatT Clientless
License : AnyConnect Premium
Encryption : IKEv2: (1)AES256 IPsecOverNatT: (1)AES256 Clientless: (1)AES-GCM-256
Hashing : IKEv2: (1)SHA1 IPsecOverNatT: (1)SHA1 Clientless: (1)SHA384
Bytes Tx : 1280101 Bytes Rx : 218580
Group Policy : abc1234 Tunnel Group : DefaultWEBVPNGroup
the group policy used shows the following:
show running-config group-policy DfltGrpPolicy
group-policy DfltGrpPolicy attributes
vpn-tunnel-protocol ikev1 ikev2 l2tp-ipsec ssl-client
also, "show vpn-sessiondb webvpn" shows no client connected.
but since Cisco, doesnt support any other browser and IE is obsolete now, what are our best options? if move to a client based, how would we deliver the vpn profile? and what changes would we need to make to our configuration?
I look forward to hearing from you.
check clientless SSL VPNs
what model of ASA and what code running. (we generally use Any connect )
i do remember other browsers supported, have you tried any other browser, (most browsers latest one do not support legacy SSL/TLS, so you need to upgrade version of code also)