4-4
Cisco AnyConnect VPN Client Administrator Guide
OL-12950-012
Chapter 4 Installing the AnyConnect Client on a Security Appliance Using CLI
Disabling Permanent Client Installation
To specify SSL as a permitted tunneling protocol, first exit to global configuration mode, enter the
group-policy name attributes command to enter group-policy mode, or the username name attributes
command to enter username mode, and then enter the webvpn command to enter webvpn mode and
change the WebVPN settings for the group or user.
The following example identifies SSL as the only permitted tunneling protocol for the group-policy
sale
s:
hostname(config)# group-policy sales attributes
hostname(config-group-policy)# we
bvpn
hostname(config-group-webvpn)# vp
n-tunnel-protocol svc
For more information about assigning users to group policies, see “Configuring Tunnel Groups, Group
Policies, and Users” in Cisco Security Appliance Command Line Configuration Guide.
Disabling Permanent Client Installation
Disabling permanent AnyConnect client installation enables the automatic uninstalling feature of the
client. The client on the remote computer uninstalls at the end of every session.
To disable permanent AnyConnect client install
ation for a specific group or user, use the
svc keep-installer
command from group-policy or username webvpn modes:
svc keep-installer no
ne
The default is that permanent installation of the client i
s enabled. The client on the remote computer
remains installed on the remote computer at the end of every session, reducing the connection time for
subsequent connections. The following example configures the existing group-policy sales to not keep
the client installed on the remote computer when the session terminates:
hostname(config)# group-policy sales attributes
hostname(config-group-policy)# we
bvpn
hostname(config-group-policy)# sv
c keep-installer none
To Next Page
Loading...
Need help?
General