Cisco Anyconnect Secure Mobility Client Mac Os

admin



A recent issue came up with some of our customers that use Mac computers who were having issues trying to connect to our VPN using the Cisco AnyConnect client v3.0. The root cause was that they were running the latest Mac OS X version, 10.8 Mountain Lion, which is not supported by the AnyConnect version 3.0 and earlier. And of course, the web deploy version 3.0.08057 was what was on our ASA.

Mac OS Mojave (10.14) is compatible with AnyConnect 4.9.05042 and below For more details about the supported operating systems (Windows, Linux, Mac) of the Cisco AnyConnect Secure Mobility Client, refer to the article on Cisco AnyConnect Secure Mobility Client Supported Operating Systems and Requirements. Mac OS Mojave (10.14) is compatible with AnyConnect 4.9.05042 and below For more details about the supported operating systems (Windows, Linux, Mac) of the Cisco AnyConnect Secure Mobility Client, refer to the article on Cisco AnyConnect. Cisco AnyConnect client features are enabled in AnyConnect profiles. These profiles can contain configuration settings like server list, backup server list, authentication time out, etc., for client VPN functionality, in addition to other optional client modules like Network Access Manager, ISE posture, customer experience feedback, and web. AnyConnect Pre-Deployment Package (Windows 10 ARM64) - includes individual MSI files Login and Service Contract Required anyconnect-win-arm64-4.10.00093-predeploy-k9.zip 08-Apr-2021. Delete folder access related cache details in the Cisco AnyConnect Secure Mobility Client folder. The permission popups will reappear with a subsequent start of posture, and the user can click OK to grant access.

Mac

In order to fix this specific problem we updated all of the AnyConnect client versions on our ASA to the latest 3.1 releases for Windows, Linux, and Mac, then had our Mac users running 10.8 Mountain Lion log back into the VPN web portal. They were prompted to update their AnyConnect client to the new version, which we had set up on the ASA to force client updates, and now they were able to access VPN without any issues.

However, we found out that there were some caveats with updating to the AnyConnect 3.1 release. We now gained the ability to support 10.8 Mountain Lion operating systems, but 10.5 Leopard support was dropped. So unfortunately, this locked out several of our customers that were still running Mac OS X 10.5 Leopard on their Intel Macs. In short, they couldn’t connect to VPN because the profile settings on our ASA are configured to force the installation of the current edition of the AnyConnect client on the ASA in order to access VPN. When the installer for the 3.1 client launched, they were presented with an error that told them their operating system was not supported, then the install failed. So, since these Mac OS X 10.5 Leopard users couldn’t update to the newest client version, they were locked out of our VPN.

As a workaround to support all of the Intel Mac OS X editions, we downgraded the Intel Mac AnyConnect client back to 3.0 and turned off the Auto Update feature on the ASA. This will provide the 3.0 client for those that currently do not have it, as well as not perform the auto update check. The good news is that the new AnyConnect client v3.1 for Windows supports Windows XP all the way up to Windows 8 so there is no worries about upgrading it. Mac OS X is a different story.

According to Cisco, here is there recommended workaround to this issue:

  1. Disable the client checkAuto Update on the ASA.
  2. If there is anyone that needs to connect to VPN with a Mac computer running 10.5 Leopard, downgrade the AnyConnect client to one of the 3.0 releases or provide the DMG installer to the Mac user.
  3. If there is anyone that needs to connect to VPN with a Mac computer running 10.8 Mountain Lion, provide the 3.1 DMG installer to that person.
Anyconnect download

I hope this helps others out that are experiencing the same issues.

Feel free to peruse the official AnyConnect release notes for more information: http://www.cisco.com/en/US/docs/security/vpn_client/anyconnect/anyconnect31/release/notes/anyconnect31rn.html#wp44364

Anyconnect Client Mac Os Download

– Joe

Before users can connect to the Rutgers VPN with the Cisco AnyConnect app, they need to do the following:

  1. Activate the Remote Access Service on their netID account
  2. Enroll in NetID+

Remote Access Activation

Before using Cisco AnyConnect you will need to activate the service on your NetID.

  1. Go to https://netid.rutgers.edu and select Service Activation on the left of the site.
  2. Log in with NetID and password
  3. You will see the following screen:
  4. Select the Remote Access VPN, Cisco AnyConnect Access for Rutgers Option
    • NOTE: You don’t have to activate the service again if you have [You already have this account.] listed next to the Remote Access option.
  5. Click the “Activate Services” button

NetID+ Enrollment

  • Go to https://netid.rutgers.edu and click on the Activate netID button.

Downloading & Installing Cisco AnyConnect Client

The screen shots that follow are what the user should see upon installing Cisco AnyConnect VPN on a Mac. Some images may be slightly different on each system and OS version.

  1. Download the AnyConnect installer from https://vpn.rutgers.edu

Once you’ve authenticated an automatic installation should begin. If it fails to start downloading you should see an option to click “AnyConnect VPN” and you will be prompted to save the client.

  1. In the Downloads folder, locate and run the AnyConnect Secure Mobility Client installation package.

Cisco AnyConnect can only be installed by a user with admin rights on a Mac. Mac OS security initially blocks the Cisco extensions.

Cisco AnyConnect will install but the System Extensions will be blocked by the OS.

Cisco Anyconnect Secure Mobility Client Mac Os
  1. Click on Open Preferences in either of the popup windows.
  2. Click on the Lock in the lower left to enter an admin user’s username and password.
  1. Click on Allow to unblock the extension.

A dialog box will appear stating that the System extension has been enabled.

To launch Cisco AnyConnect

Cisco Anyconnect Secure Mobility Client Mac Os Download

  1. Go to Applications/Cisco and double click Cisco AnyConnect Secure Mobility Client
  2. Enter the address of the VPN, vpn.rutgers.edu
  3. You will be prompted for your username, password and Duo Action. Enter your NetID username and password. For Duo Action, enter push, phone or sms depending on how your NetID + account is setup.

Cisco Anyconnect Secure Download

Your Mac will now be connected to the Rutgers VPN.