Solved

anyconnect on cisco asa  CSTP not enabled

Posted on 2014-03-08
4
2,034 Views
Last Modified: 2014-03-25
I am on a cisco asa 5505 v 903
I am trying to get the cisco anyconnect working however whenever I try to vpn in I get the following error message:

"CSTP not enabled"
I have never seen that error message before I am having an issue finding a solution in my reasearch

below is my config


webvpn
 enable LAN
 anyconnect image disk0:/anyconnect-win-3.1.05152-k9.pkg 1
 anyconnect enable
 tunnel-group-list enable
group-policy SSLClientPolicy internal
group-policy SSClientPolicy internal
group-policy SSClientPolicy attributes
 vpn-tunnel-protocol ssl-client ssl-clientless
username xxxx password xxxxxx encrypted privilege 15
username xxxx attributes
 service-type remote-access
tunnel-group SSLClientGroup type remote-access
tunnel-group SSLClientGroup general-attributes
 address-pool SSLClientPool
 default-group-policy SSLClientPolicy
0
Comment
Question by:mmercaldi
  • 2
  • 2
4 Comments
 
LVL 51

Expert Comment

by:Netman66
ID: 39916563
This is a good resource to see how to set this up.

http://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/100918-asa8x-anyconnect-vpn-config.html

Not sure, but it appears you may have enabled it on the inside rather than outside.
0
 

Accepted Solution

by:
mmercaldi earned 0 total points
ID: 39916614
found the issue
I mistyped my own policy
group-policy SSLClientPolicy internal
group-policy SSClientPolicy internal
group-policy SSClientPolicy attributes

I fogot the L when I made the attributes
0
 
LVL 51

Expert Comment

by:Netman66
ID: 39916632
Good catch.  Read right over that too!
0
 

Author Closing Comment

by:mmercaldi
ID: 39952696
it was my own mistake for mistyping the commands
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

777 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question