Anyconnect Secure Gateway

 admin



Cisco Anyconnect is much more than a VPN Client, it’s supported on the Cisco ASA and Cisco Firepower platforms and can be easily integrated with Cisco Umbrella, Firepower, ISE, Stealtwatch, Duo, Securex amongst others solutions since Cisco Portfolio is constantly growing.

  • Categories Cisco, IPsec, Security Tags Anyconnect, Cisco ASA, Package, Client Software, Image, Upload Post navigation Juniper new Champion Program Design Track Magic Quadrant for the Wired and Wireless LAN Access Infrastructure 2016.
  • If you are running Cisco AnyConnect and you keep getting this message. Reconnect is just useless. One of the possibilities is you have shared your network adapter. You need to disable the share.

Getting back to the original problem, this error message is because your Cisco ASA doesn’t have the AnyConnect image for your WebVPN profile.

This can be a problem related to the configuration or perhaps you do not have the image for the OS that you are working on. Confirm that you have the .pkg on your firewall, if you do not have it you will need to download it from cisco.com and upload it to the firewall. Note that you if you have a firewall cluster you have the copy to both firewalls otherwise if failover happens you will face the same problem again. This example is for ASDM 7.6, but if you run version 6.x you can do using.

ASDM Configuration > Remote Access VPN > Network (Client) Access > AnyConnect Customization/Localization > Binary

Secure gateway access

2. Once you select the package and test again the problem should go away, however if you still have issues contact us.

Windows Users (macOS users, please scroll to the bottom)

SecureAnyconnect secure gateway

There are a couple of reasons why a Windows user will get the error 'AnyConnect was not able to establish a connection to the specified secure gateway' or 'The VPN client agent was unable to create the interprocess communication depot' while trying to connect using the Software VPN:

Anyconnect
  • More than 1 user is logged on to the computer at one time or
  • ICS (Internet Connection Sharing) is enabled.

Here's how to fix both problems.

A secure gateway with a SHA-1 certificate or a certificate with SHA-1 intermediate certificates may no longer be considered valid by a Windows Internet Explorer 11 / Edge browser or a Windows AnyConnect endpoint after February 14, 2017.

More than 1 user is logged on to the computer at one time

Advise the user to restart the computer. This will logoff any other users who may be logged on. If the problem persists, read on.

Schlumberger Secure Gateway Login

Check to see if ICS (Internet Connection Sharing) is running

Anyconnect secure gateway
  1. Select the Start button and then select the Control Panel.
  2. Under the Network and Internet category, select the Network and Sharing Center.
  3. In the left-hand panel select Change Adapter Settings.
  4. Right-click the network connection being shared (try the wired/Ethernet adapter connection first and then check the other adapters) and select Properties.
  5. Select the Sharing tab.
  6. Uncheck the box to Allow other network users to connect through this computer's connection.
  7. Select OK.

Additionally, check that the ICS service is not running.

  1. Select the Start button and then select Run.
  2. Type: services.msc and press ENTER on your keyboard.
  3. Find Internet Connection Sharing (ICS) and then stop the service.
  4. Change the Startup Type to Disabled and then reboot the computer.

macOS users

Anyconnect Secure Gateway Has Rejected

Unfortunately the current AnyConnect VPN client will only run on macOS versions newer than 10.12 (Sierra). Please update your operating system. Faculty and staff should partner their with their local CSC, and students should reach out to AntTech for assistance. The OITHD cannot assist with OS upgrades, and we cannot implement any changes to the network to get your computer to connect to the VPN. We apologize for the inconvenience. You may continue to use the WebVPN at https://vpn.uci.edu

Anyconnect Secure Gateway Error

Versions older than macOS 10.12 are no longer supported by Apple, so our recommendation is that you upgrade to at least Mavericks. Your system could be vulnerable to attacks that are fixed in newer releases, and your system could be compromised and used to attack other systems (and possibly used to attack UCI when you are using the VPN).

What Is Secure Gateway

In addition, there are bug fixes and security updates to the VPN client that necessitate it being updated to fix problems other users are having and to prevent security issues with older clients.