Cisco connect remote desktop
|
Use the Remote Desktop Connection application in macOS to connect to your work computer from off campus. Before using, you will need to have Cisco AnyConnect Secure Mobility Client and Microsoft Remote Desktop installed on your computer, and Dedicated Desktop Support will need to configure your work computer to allow Remote Desktop Connections. Contact your DDS Professional to schedule a configuration appointment.
Enter vpn.colorado.edu, or your department's custom VPN, if applicable (contact your DDS Professional for the address of a custom VPN). Click Connect.
Enter your Identikey username and password. Click OK.
Click on the + symbol at the top of the window and select Desktop. In the Computer field, enter your work computer name in the following format: YourComputerName.ad.colorado.edu Click Save button to finish connecting. *Please Note: Your DDS professional will provide you with your computer name when configuring your work computer for Remote Desktop Connections. Contact DDS if you need this information.
Double click on the icon labelled with your computer name and enter your Identikey username and password when prompted.
Post navigation
VPN establishment capability for a remote user is disabled. A VPN connection will not be established.The client profile is an XML file that gets pushed out to the AnyConnect client every time the VPN is established. The correct way to fix this is by configuring the Citrix VPN profile on the ASA. Usually this is done by the ASA administrator using the Cisco Adaptive Security Device Manager (ASDM). If you're the ASA administrator read this article for instructions how to configure this. But what if you're not the ASA administrator or the admin can't/won't to make this change for some reason? We can hack it! I don't normally write blog posts like this, but I honestly can't think of a single good reason to block VPN access from a remote desktop, so I don't consider this bypassing a security setting. Here's how to get around it. First, open the client profile XML file in Notepad. It's located in the C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile folder.
Edit the
To: Now save the profile to your Desktop or another location with a .BAK extension. For example, if the original profile name is ContosoVPN.xml, save it as ContosoVPN.bak. Move the modified .BAK file to the C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile folder. This will normally require admin rights. You should now have two client profile files there, for example ContosoVPN.xml and ContosoVPN.bak. Now open Event Viewer and navigate to Applications and Services Logs > Cisco AnyConnect Secure Mobility Client. Search for Event ID 3021 from source acvpnui. It should be near the top of the Cisco logs if you just tried to connect to the AnyConnect VPN.
Right-click that event and select Attach Task To This Event. The Create Basic Task Wizard will open.
C:\Windows\System32\cmd.exeArguments: /c cd "C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\Profile" && copy *.bak *.xml /yThis task tells Windows to copy the modified .BAK profile over the .XML file that the AnyConnect client downloads from the ASA whenever acvpnui logs event ID 3021.
The task properties will open in a new window.
Thank you for using our services. We are a non-profit group that run this service to share documents. We need your help to maintenance and improve this website.
To keep our site running, we need your help to cover our server cost (about $500/m), a small donation will help us a lot. Please help us to share our service with your friends. |
