Connecting with AnyConnect VPN Client

Expand / Collapse

Type of Security Control: Administrative 

Purpose: 

The purpose of this procedure is to define the actions to be taken to install the AnyConnect VPN Client, connect it to the firewall and disconnect from the VPN once connected.  

Impact:  High 

Applies to: Internal | External 

Description: The AnyConnect VPN client is Cisco’s next generation VPN client, providing managed firewall customers with a secure VPN connection to their environment at Databank

Applicable Compliance Statements: 

  • NIST SP800-53R4 IA-2

Prerequisites: 

  1. Access to Databank Portal
  2. Access to AnyConnect VPN Client

Service Level Agreements: N/A

Process:

InstallingAnyConnect VPN Client

  1. Download the appropriate AnyConnect installer below.
  2. NOTE: If you are using a Mac, we do not support using the built-in Mac VPN client. We recommend using the AnyConnect Client at the bottom of this KB as that is officially supported.
  3. Once downloaded, run the install wizard and accept the default settings.
  4. End.

ConnectingAnyConnect VPN Client to the Firewall

  1. Open the Cisco AnyConnect VPN Client. 
  2. Enter your firewall’s name or IP Address in the Connect field. 
  3. Click Connect. 
  4. If you are unsure of your firewall name or IP address please contact Databank Support. 
  5. If you receive a security alert about an untrusted connection, you have two options: Connect Anyway or Cancel Connection (or Change Setting… or Keep Me Safe depending on your version of the client).
  6. This warning is presented to the user as the SSL on the firewall is self-signed.
  7. If you have Certificate Authority issued SSL and want that applied to the firewall, please submit a ticket via the Databank Portal.
  8. Clicking Connect Anyway allows the connection if you are an administrator on your workstation.
  9. To dismiss the warning, continue to step 13.
  10.  To remove this warning, click Cancel Connection or Change Setting.
  11. Go back to the first screen (see step 15) and click the gear icon in the bottom left of the interface to open the settings for AnyConnect.
  12. In the settings, click Preferences.
  13. Uncheck Block connections to untrusted servers
  14. Enter the VPN Username and Password.
  15. Click OK.
  16. This is not the same password as your portal login and must be configured by Databank staff. Please contact Support if you have not been provided with a login.
  17. After a few moments, the AnyConnect window will minimize and you should see a padlock icon in your system tray (Windows) or dock (Mac).
  18.  You can now connect to your internal resources using the private IP addresses.
  19. Contact Databank Support if you do not know the private IP addresses of your servers or you can view the private IP addresses in the Customer Portal.
  20. End.

Disconnect from the VPN

  1. Open the AnyConnect Window.
  2. Click VPN Disconnect.
  3. End.
Owner: Chief Information Security Officer
Questions: Chief Information Security Officer
Effective Date: 10/04/2017



Rate this Article:

Attachments


anyconnect-win-4.5.04029.zip anyconnect-win-4.5.04029.zip (7.85 MB, 1,115 views)

anyconnect-linux64-4.5.04029.tar.gz anyconnect-linux64-4.5.04029.tar.gz (14.34 MB, 251 views)

anyconnect-macos-4.5.04029.dmg anyconnect-macos-4.5.04029.dmg (17.83 MB, 33,879 views)



Details
Category: Firewall

Last Modified:Friday, May 25, 2018 7:53 AM

Type: HOWTO

Level: Beginner

Rated 4 stars based on 13 votes.

Article has been viewed 96,437 times.

Options
Email Article Email Article


Social Bookmarks Social Bookmarks