Manualsbrain.com
  1. Manuals
  2. Brands
  3. Cisco
  4. Cisco AnyConnect Secure Mobility Client v2.x
  5. Troubleshooting Guide

Cisco Cisco AnyConnect Secure Mobility Client v2.x Troubleshooting Guide

Download
Page of 52
 
13
Cisco AnyConnect Secure Mobility Client VPN User Messages, Release 3.1
 
FIPS compliant algorithms for encryption, hashing, and signing have not been 
enabled on this system.
Description
As part of the AnyConnect FIPS verification process, the Windows operating system's 
FIPS registry key is checked to ensure that the system is in a FIPS-compliant mode. This error is 
seen because the registry key value to enable FIPS is not set.
Recommended Action
Restart Windows. AnyConnect will try to set the registry keys when the system 
is restarted.
FIPS mode requires TLS to be enabled to establish a VPN connection.
Description
FIPS mode requires that the TLS protocol be enabled. AnyConnect failed to enable the 
TLS protocol through the registry key setting.
Recommended User Response
Choose the Control Panel > Internet Options > Advanced tab, and 
check Use TLS 1.0 under “Security.”
Firefox certificate libraries could not be loaded. VPN connection cannot be 
established.
Description
AnyConnect could not access the Firefox certificate store, and there was no alternative 
certificate store available. Failure to verify server certificates results in the inability to verify the 
identity of the secure gateway. Also, AnyConnect cannot respond to certificate requests.
Recommended Action
Verify that Firefox is correctly installed, and that Firefox’s certificate store is 
valid.
Hostscan command line did not build.
Description
The Hostscan module could not be properly configured to run. There were errors setting 
up the commandline parameters to launch the executable stub for Hostscan. This is an unexpected 
error.
Recommended User Response
Try to connect again. If the problem persists, run DART. (See 
.) Report the error to your organization's technical 
support and include the DART bundle.
Recommended Administrator Response
Open a case with the Cisco Technical Assistance Center (TAC) 
and include the DART bundle.
Hostscan CSD prelogin verification failed.
Description
During the pre-login check, Host Scan detected the local violation of a rule configured 
on the secure gateway. Examples of pre-login checks include:
Host Scan detected a keylogger.
A dynamic access policy matched an endpoint criterion disqualifies AnyConnect for VPN 
access.
Recommended User Response
Restart the computer or device and try a new VPN connection.