Cisco Cisco AnyConnect Secure Mobility Client v2.x Technical Manual
Contents
Introduction
Prerequisites
Requirements
Components Used
Background Information
Configure
Authenticating and Authorizating users using the Local Database
Authentication, Authorization and Accounting using a remote AAA server
Network Diagram
Headend configuration changes
Radius Server configuration
AnyConnect client profile configuration
Change the default AnyConnect IKE identity(Optional)
Bypass Downloader(Optional)
Communication flow
IKEv2 and EAP exchange
Verify
Troubleshoot
Introduction
This document provides a sample configuration of how to configure an IOS/IOS-XE headend for
remote access using AnyConnect IKEv2 and AnyConnect-EAP authentication method.
remote access using AnyConnect IKEv2 and AnyConnect-EAP authentication method.
Prerequisites
Requirements
Cisco recommends that you have knowledge of these topics:
IOS-XE release 3.15 (15.5(2)S) or later
●
IOS release 15.5(2)T or later
●
AnyConnect client version 3.0 or later
●
Components Used
The information in this document is based on these software and hardware versions:
Cisco ASR1002-X running IOS XE 3.15
●
AnyConnect client version 3.1.8009 running on Windows 7
●
Cisco ACS server 5.3 (optional)
●
The information in this document was created from the devices in a specific lab environment. All of
the devices used in this document started with a cleared (default) configuration. If your network is
the devices used in this document started with a cleared (default) configuration. If your network is