Unicon documentation migration is in progress. You might find some broken links or experience minor issues in the documentation. We are working on resolving these issues.

X

Scout Enterprise Management Suite

Configuring Cisco AnyConnect / Cisco Secure Client

Cisco renamed its VPN AnyConnect Client from version 5 to Cisco Secure Client. The VPN technology remains the same, and the protocol is still called AnyConnect. Unicon ships the Cisco Secure Client for the first time with eLux RP 6 2302.1000, in parallel with the well-known AnyConnect Client. Their configuration for eLux is the same for both packages.

The following instructions refer to individual devices. To define VPN profiles for entire OUs, use Device configuration > Network > VPN. For further information, see Defining a VPN profile.

Note:

The eLux package Cisco AnyConnect or Cisco Secure Client must be installed on the devices. This may require modifications of the image definition file on the web server via ELIAS.

  1. Transfer the root certificate to the devices to /setup/cacerts. If you use the Scout feature Files configured for transfer

    Note:

    Use the .pem format for the certificate.

    Advanced config

    Note:

    The certificates that are transferred from the VPN server are stored in /setup/cacerts/client.

  2. In the Scout Console, for the relevant device, open Advanced device configuration > VPN client. Then, in the list-field, select Cisco AnyConnect VPN Client. Use this option also for the Cisco Secure Client.

    Advanced config

  3. Restart the device.The device might require one more restart to activate the VPN configuration data locally.

The device connects via AnyConnect on the next restart. Users have the active VPN connection as a live information on their system bar.

Configuration file

As an option, you can create an AnyConnect or Cisco Secure Client configuration file or copy one from a reference device, and then transfer the file to /setup/elux/.cisco/profile/ via the Scout feature Files configured for transfer. In the configuration file, you can specify your back-end server address.

Configuring Cisco AnyConnect / Cisco Secure Client