SOTI Pulse Logo

How can i deploy and configure a Cisco Anyconnect Client with a VPN Profile and a Certificate for authentification?

G
Gerrit

Hi guys!

I need some help with my VPN.

I already deployed Cisco Anyconnect to my Android Tablet, but since now it was not possible for me to configure an automatic configuration for the VPN Profile with the right settings and a VPN certificate for the authentification.

Also as if i try to make a profile in Mobicontrol, to test-deploy a certificate i cannot upload the certificate.

I have a .pfx, didn't work. Tried the .key, didn't work either. Also for a .crt.

Somehow it is telling me in some cases that the password for the file is not correct.

But i know that it is correct - i also tried then to remove the password, but the same story.

No password is also a false password.

I am looking forward for your answers! 

Thanks in advance! :)

Best regards,

Gerrit

vpn certificate profile anyconnect Cisco
a year ago
SOTI MobiControl
ANSWERS
RC
Raymond Chan Diamond Contributor
a year ago

Assuming that your devices are enrolled in Android Enterprise Device-Owner mode, have you configured the managed configuration tab in the app policy deploying the Cisco AnyConnect app ?  

G
Gerrit
a year ago

Hi Raymond!

Thanks for your answer.

Yes i know these advanced configurations, i think this would be the next step after somehow deploying the certificate to the device(s).

But i also already configured it in a standard way, like: Connection Name, Host, Protocol, Set Active.

Or is there somewhere a manual of how to configure this settings page properly?

I searched for this, but found nothing.

RC
Raymond Chan Diamond Contributor
a year ago

For details on what each managed configuration parameter means and how each should be configured properly (e.g. syntax, data type & valid range, etc.), support team for the app (Cisco in your case here) should be contacted to get the relevant documentation.

If you are told that any required certificate should be deployed with MDM directly and not via any of the managed parameters, then you likely can include a new MobiControl profile with certificate payload that specify the certificate file(s) and parameters required.

G
Gerrit
a year ago

Ah okay, I'll try that & contact Cisco Support.

Hope they can provide these information :) 

I'll post an update here, as soon as i get an answer from them.

G
Gerrit
a year ago

Hey Raymond, do you know where to configure that the VPN-certificate should be stored as a system certificate? Currently with my configured profile the certificate is being deployed as an user certificate. Cisco Anyconnect ist not able to find the certificate there.

G
Gerrit
a year ago

Hey Raymond, do you know where i can configure that the VPN-certificate should be stored as a system certificate? Currently with my configured profile the certificate is being deployed as an user certificate. Cisco Anyconnect is not able to find the certificate there. 

A
AMMOD@SOTI
a year ago

Hi Gerrit,

Thanks for posting on SOTI Pulse, Thanks Raymond for responding to the post, your expertise and willingness to help are greatly appreciated!

Have you had an opportunity to test the suggested solutions by Raymond , and has it successfully addressed your query?

Are you still experiencing this issue ?

If yes please do let me know 

If not, or If you have any additional questions or concerns, please don't hesitate to reach out. We're dedicated to providing assistance and support.

 

 

 

Similar Discussions