Re: Yet another AnyConnect License question :)

dkraut · ‎03-01-2013

I've read many different articles and think I have a pretty good handle on the AnyConnect licensing. However, I'm still a little confused on whether or not you can mix and match Essentials and Premium without severely limiting your total VPN user count? For example, let's say I buy an Essentials license for my ASA 5510 ( ASA-AC-E-5510= ). This would allow me to connect up to 250 AnyConnect client based devices to my ASA, correct? Now lets say I have the need for 10 "clientless" users to also connect so I buy ASA5500-SSL-10=

Am I now restricted to 10 TOTAL AnyConnect VPN users on my ASA? or can I now connect 10 clientless and up to 240 AnyConnect client based devices?

This is the article that alerted me to this restriction > http://tunnelsup.com/tup/2012/08/08/understanding-cisco-asa-anyconnect-licensing/

Julio Carvajal · ‎03-01-2013

Here is one chart I used long time ago to understand this

Anyconnect Essentials

Does not support CSD

Does not support Clientless

Only supports AnyConnect client connections

Anyconnect Premium

Does support CSD

Does support Clientless SSL VPN

Supports all flavor of SSL VPN: Anyconnect, clientless, All advanced SSL features.

The Anyconnect Essentials is a license that allows you to connect up to your 'Total VPN Peers" platform limit with AnyConnect.

Without an AnyConnect Essentials license, you are limited to the 'SSLVPN Peers' limit on your device.

So basically it's one or the other

How to enable the Anyconnect Essentials:

conf t

webvpn

anyconnect-essentials

Regards

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC