Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
584
Views
5
Helpful
2
Replies

Remove FQDN from Anyconnect profile?

Wan_Whisperer
Level 1
Level 1

‎09-23-2019 01:09 PM

HI,

 

After users connect for the first time using IP, I assume their profile is downloaded and the box on Anyconnect where you input the IP of the ASA is changed to the FQDN.  This name will not resolve because it is not in any DNS except for my local.

 

Is there a way to remove the FQDN and just have the ASA's IP automatically inserted instead of the user replacing the FQDN with it IP every time?

Labels:
0 Helpful
2 Replies 2

Rob Ingram
VIP
VIP

‎09-23-2019 01:37 PM

Hi,
Have a look in the location below and remove the profile or edit it and define the correct IP address/fqdn.

webvpn
anyconnect profiles Anyconnect disk0:/<your profile name>.xml

HTH

Marvin Rhoads
Hall of Fame
Hall of Fame

‎09-24-2019 05:24 AM

You can use the AnyConnect profile editor to update the profile as @Rob Ingram suggested.

However if the certificate on the ASA references the FQDN and does not have the IP address as a Subject Alternative Name (SAN) then users will always get a certificate warning when connecting.

0 Helpful
Customers Also Viewed These Support Documents