Cisco Anyconnect Does Not Open



  1. Cisco Anyconnect Does Not Open Linux
  2. Cisco Anyconnect Does Not Connect

My standard AD user account's password far exceeds 15 characters, including an upper, a lower, a special, and a number - I have no issues with AnyConnect and a Cisco endpoint. This worked with an LDAP login, and then when it was moved to a RADIUS-type login to leverage a two-factor provider. If your firewall does not have an AnyConnect profile, it will not be downloaded to your laptop and saved. You can manually create and save profiles in the AnyConnect profile directory. AnyConnect checks the directory on startup. Launch the Cisco AnyConnect Secure Mobility Client client. If you don't see Cisco AnyConnect Secure Mobility Client in the list of programs, navigate to Cisco Cisco AnyConnect Secure Mobility Client. When prompted for a VPN, enter su-vpn.stanford.edu and then click Connect. Enter the following information and then click OK. Anyconnect uses 'ssl-vpn' by default, but it can be configured to run IKEv2 vpn also (i think, you have to place a connection profile on the VPN gateway to force anyconnect to use IKEv2). Also anyconnect is alble to run (and mybe will do so by default) 'ssl-vpn over. The attempt to launch AnyConnect in standalone mode to a Cisco IOS ® Router running Cisco IOS Software Release 12.4 (20)T is unsuccessful. The anyconnect internal error (state: not connected) error message appears.

Skip to end of metadataGo to start of metadata

Drexel's VPN new requires Mutli-Factor Authentication or MFA.

Once you login to the VPN, and click 'Connect,' answer your phone, and press the # sign. Or press 'Approve' in the Microsoft Authenticator App notification (unlocking your phone may be required).

To set-up MFA, or change to the Microsoft Authenticator App (especially if you travel outside the U.S. and wish to avoid excessive call or data roaming charges), see the following webpage.

Do the following to install the 'Cisco AnyConnect' VPN application on a Mac computer.

This VPN application will let you connect to Drexel's network when you are off-campus, and helps you access Drexel online resources.

  1. Visit https://vpn.drexel.edu in a web browser, and login with your DrexelOne userid and password.

    Click link above to collapse this area. Click on image to zoom in.

  2. Click 'Start AnyConnect'.

    Click link above to collapse this area. Click on image to zoom in.

  3. Allow the 'Web-based installation' to fail or be 'unsuccessful.'

  4. Then click 'AnyConnect VPN' under 'Manual Installation.'

    1. We cannot provide a direct link here for the installation file that does not require you to repeat all of the above steps again.

      Click link above to collapse this area. Click on image to zoom in.

  5. Download/save the Cisco_AnyConnectVPN.dmg (Disk Image) file to your Mac computer.

    Click link above to collapse this area. Click on image to zoom in.

  6. Open/double-click the 'Cisco_AnyConnectVPN.dmg' on your Mac, and then open/double-click the 'any-connect-macosx....pkg' file on your Mac.

    Click link above to collapse this area. Click on image to zoom in.
  7. Follow the onscreen instructions to install the 'Cisco AnyConnect' application on your Mac.
  8. See the next section for how to use the 'Cisco AnyConnect' application.

Use

This VPN application will let you connect to Drexel's network when you are off-campus, and helps you access Drexel online resources.

  1. Open the 'Cisco AnyConnect' applications from the 'Applications' folder on your Mac.

    Click link above to collapse this area. Click on image to zoom in.

  2. Enter 'vpn.drexel.edu' (without quotes) in the provided text box, and click 'Connect.'

    Click link above to collapse this area. Click on image to zoom in.

  3. Enter your DrexelOne username and password, and click 'Connect.'

    Click link above to collapse this area. Click on image to zoom in.
  4. IMPORTANT NOTE: The VPN app may say 'Login failed' until your approve MFA if you use an Authenticator app.
  5. Use your Drexel Multi-Factor Authentication of MFA method to 'Approve' the connection (or press # when called on the phone).

    Drexel's VPN new requires Mutli-Factor Authentication or MFA.

    Once you login to the VPN, and click 'Connect,' answer your phone, and press the # sign. Or press 'Approve' in the Microsoft Authenticator App notification (unlocking your phone may be required).

    To set-up MFA, or change to the Microsoft Authenticator App (especially if you travel outside the U.S. and wish to avoid excessive call or data roaming charges), see the following webpage.

  6. Within 30 seconds, you should see the 'AnyConnect' icon with a tiny lock image on it appear in the upper right of your Mac's computer display.

    Click link above to collapse this area. Click on image to zoom in.


    1. You may also see a window saying you are connected.

      1. If you do not, and want a 2nd way to verify you are connected, open the 'Cisco AnyConnect' application from the 'Applications' folder on your Mac to see this window.

        Click link above to collapse this area. Click on image to zoom in.

        There are 2 images below.

  7. Click the 'Logout' button on the https://vpn.drexel.edu webpage open in your web browser.

    Click link above to collapse this area. Click on image to zoom in.

  8. Eject the 'AnyConnect VPN' drive on your Mac computer desktop. Then delete the 'Cisco_AnyConnect_VPN.dmg' file from where you saved it.

    1. To eject a drive, right-click/control-click the drive and select 'Eject...'

    2. To delete a file, right-click/control-click the file, and select 'Move to Trash.' Or drag the file to delete to the 'Trash' can icon.

      Click link above to collapse this area. Click on image to zoom in.

      You may have saved the 'Cisco_AnyConnect_VPN.dmg' file somewhere other than your Mac computer desktop.

Cannot Install Cisco VPN because Cisco VPN Already Installed

Click link above to collapse this area. Click on image to zoom in.

On rare occasions, someone will install Cisco VPN, and get an error message that Cisco VPN is already installed.

First, try the Cisco VPN application in your Applications. If your current Cisco VPN application still works, use that.

If your current Cisco VPN application does not work, and you cannot install another because you are told it is already installed, do the following:

  1. In the 'Cisco' folder in your 'Applications' folder, open and run 'Uninstall Cisco AnyConnect.'

  2. Follow the onscreen instructions.

  3. If you are told Cisco AnyConnect successfully uninstalled...
    1. Follow the Cisco AnyConnect installation instructions at the top of this webpage.

    2. If you are told again that you cannot install because Cisco AnyConnect is still installed, click the link below.

      1. Go to Applications > Utilities > Terminal.
        1. Or find 'Terminal' in a Spotlight search by pressing the Command + Spacebar, or Cmd + Spacebar, or ⌘ + Spacebar keyboard keys simultaneously.
      2. Type in the following command at the prompt:
        sudo /opt/cisco/vpn/bin/vpn_uninstall.sh
      3. Enter your Mac password.
      4. Once the command finishes running:
        1. Follow the Cisco AnyConnect installation instructions at the top of this webpage.
        2. If that still doesn't work, contact ihelp@drexel.edu .
Click link above to collapse this area. Click on image to zoom in.

If you have problems using Java with VPN connected, you'll need to open the Java Control Panel's Security tab and configure it to allow the Drexel VPN. Here's how.

  1. Open the Java Control Panel
    1. Windows 10 instructions
    2. Mac instructions

  2. See the following screenshot for how to set the control panel to allow Java access in a Drexel VPN session.

If you have Self Service for Mac installed (which all instructors and staff with Macs should), you can definitely install the Cisco AnyConnect VPN application from there easily while on-campus at Drexel.

However, off-campus users must first connect to the Drexel network using the Cisco AnyConnect VPN client to use Self Service for Mac to install the Cisco AnyConnect VPN client. It's a classic paradox or catch-22.

To avoid that, the instructions below explain how to install the Cisco AnyConnect VPN client without using Self Service for Mac.

Note that the Cisco AnyConnect VPN client updates itself when it first connects.

Click link above to collapse this area. Click on image to zoom in.

If the Cisco AnyConnect application doesn't work on a Mac (especially macOS X Mojave), run this command in terminal: sudo chmod 777 /private/tmp

Then close and re-open Cisco AnyConnect, and try again. If it still does not work, try a reboot.

The above instructions are HIGHLY recommended, but in case it's useful, here's an alternate method.

Note that this alternate method is a much older method, and could lead to downloading a very old version of the VPN that cannot update itself.


Cisco Anyconnect Does Not Open Linux

NEED MORE HELP? Contact ihelp@drexel.edu or the CCI Commons HelpDesk at 215-895-2480.

*Additional Assistance is ONLY for Drexel University - College of Computing & Informatics (CCI) instructors, faculty, professional staff, and students.*

Anyone else should contact technical support for their own college, department, university, organization, or business.

Table of Contents for Sharing Links to Specific Sections Above

This article refers to the Cisco AnyConnect VPN. If you're looking for information on the Prisma Access VPN Beta that uses the GobalConnect app, see: Prisma Access VPN Landing Page.
If you're not sure which service you're using, see: How do I know if I'm using the Cisco AnyConnect VPN or the Prisma Access VPN?

Q: How do I uninstall Cisco Anyconnect VPN Client on Mac OS X?

Answer

If the application is still installed do this:

  1. From the Finder go to the Applications folder.
  2. Look for the Cisco folder and open it
  3. Then double click on Uninstall Anyconnect to start the uninstall process
  4. Follow instructions to uninstall VPN program

Here's the procedure for manually uninstalling the AnyConnect client from a Mac OS X system.

As root, run the following shell script from the Terminal:

You will be prompted for your password. Once you enter it, just follow the steps

If you still having trouble and/or the new Cisco Anyconnect installation complains that you have a version installed, follow these steps:

Open

Enter these commands to clean out the old Cisco VPN kernel extension and reboot the system.

If you installed the Cisco VPN for Mac version 4.1.08005 package, enter these commands to delete the misplaced files. The deletion of these files will not affect your system, since applications do not use these misplaced files in their current location.

Enter these commands if you no longer need the old Cisco VPN Client or Shimo.

Cisco Anyconnect Does Not Connect

Finally this.