Procedure
Procedure
Step 1 | In the left pane, click . You can click a VPN configuration to view the summary information on how many connection profiles and group policies are currently configured. | ||
Step 2 | Click the connection profile and under Actions in the sidebar at the right, click Add Connection Profile. | ||
Step 3 | Configure the basic connection attributes.
| ||
Step 4 | Configure the primary and optionally, secondary identity sources. These options determine how remote users authenticate to the device to enable the remote access VPN connection. The simplest approach is to use AAA only and then select an AD realm or use the LocalIdentitySource. You can use the following approaches for Authentication Type:
| ||
Step 5 | Configure the address pool for clients. The address pool defines the IP addresses that the system can assign to remote clients when they establish a VPN connection. For more information, see Configure Client Address Pool Assignment. | ||
Step 6 | Click Continue. | ||
Step 7 | Select the Group Policy to use for this profile from the list and click Select. The group policy sets terms for user connections after the tunnel is established. The system includes a default group policy named DfltGrpPolicy. You can create additional group policies to provide the services you require.
| ||
Step 8 | Click Continue. | ||
Step 9 | Review the summary. First, verify that the summary is correct. You can see what end-users need to do to initially install the AnyConnect software and test that they can complete a VPN connection. Click to copy the instructions to the clipboard, and then distribute them to your users. | ||
Step 10 | Click Done. |
What to do next
Ensure that traffic is allowed in the VPN tunnel, as explained in Allow Traffic Through the Remote Access VPN.