Configuring the asa to web-deploy the client – Cisco ASA 5505 User Manual

Page 1716

Advertising
background image

75-6

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 75 Configuring AnyConnect VPN Client Connections

Configuring AnyConnect Connections

Enabling AnyConnect Client Profile Downloads, page 75-10

Enabling Additional AnyConnect Client Features, page 75-11

Enabling Start Before Logon, page 75-11

Translating Languages for AnyConnect User Messages, page 75-12

Configuring Advanced AnyConnect Features, page 75-14

Updating AnyConnect Client Images, page 75-18

Enabling IPv6 VPN Access, page 75-18

Configuring the ASA to Web-Deploy the Client

The section describes the steps to configure the ASA to web-deploy the AnyConnect client.

Prerequisites

Copy the client image package to the ASA using TFTP or another method.

Detailed Steps

Command

Purpose

Step 1

anyconnect image

filename order

Example:

hostname(config-webvpn)#anyconnect image

anyconnect-win-2.3.0254-k9.pkg 1

hostname(config-webvpn)#anyconnect image

anyconnect-macosx-i386-2.3.0254-k9.pkg 2

hostname(config-webvpn)#anyconnect image

anyconnect-linux-2.3.0254-k9.pkg 3

Identifies a file on flash as an AnyConnect client package file.

The ASA expands the file in cache memory for downloading to
remote PCs. If you have multiple clients, assign an order to the
client images with the order argument.

The ASA downloads portions of each client in the order you
specify until it matches the operating system of the remote PC.
Therefore, assign the lowest number to the image used by the
most commonly-encountered operating system.

Note

You must issue the anyconnect enable command after
configuring the AnyConnect images with the anyconnect
image xyz command. If you do not enable the anyconnect
enable command, AnyConnect will not operate as
expected, and show webvpn anyconnect considers the
SSL VPN client as not enabled rather than listing the
installed AnyConnect packages.

Step 2

enable

interface

Example:

hostname(config)# webvpn

hostname(config-webvpn)# enable outside

Enables SSL on an interface for clientless or AnyConnect SSL
connections.

Step 3

anyconnect enable

Without issuing this command, AnyConnect does not function as
expected, and a show webvpn anyconnect command returns that
the “SSL VPN is not enabled,” instead of listing the installed
AnyConnect packages.

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals