This document contains instructions on how to obtain, install and configure the Cisco AnyConnect Secure Mobility Client (formerly the AnyConnect VPN Client) to access the OUCS VPN Service on systems running Linux.
- Red Hat Enterprise Linux 6.x (32-bit)
- Red Hat Enterprise Linux (64-bit)
- Ubuntu 9.x, 10.x, and 11.x (32-bit)
- and Ubuntu 12.04 and 12.10 (64-bit)
If the VPN installation isn't supported or successful on your system there is an Open Source VPN client called VPNC which you may be able to use instead. We provide some guidance on configuring the VPNC client.
In order to use the VPN service, you will need to have the necessary Remote Access Services username and password. For details see the online self registration service page.
Please make sure that you have read the introduction and general requirements, which apply to all VPN clients, before attempting to configure your computer or mobile device to connect to the VPN.
Note that because of the number of different Linux distributions we cannot give exact instructions for every system. We provide guidelines for downloading and unpacking the file needed to install the AnyConnect VPN client but assume some familiarity with the command line and downloading and unpacking archives on your system.
- Log in to the OUCS self-registration pages at https://register.it.ox.ac.uk/software
- Click on
[VPN Client]in the list shown.
- If you have not registered to use the VPN software, you will be prompted to do so.
- Once registered, you should see the VPN Client download page. Choose the download
that is correct for your operating system; for example
AnyConnect Client for Linux.
- If you are prompted as to what to do with the downloaded file, look to see whether
you are offered the option to open with an archive manager. If you are, choose this
option and then extract the contents (a folder called
ciscovpn) to a suitable location. If not choose the option to
[Save]and save the file (called something similar to
anyconnect-vpn-linux.tar.gz) to a convenient temporary storage location on your computer's hard disk. Make a note of where you saved the file or extracted the
Use of the VPN client software is restricted to users of the OUCS Remote Access Service only — see the web page Usage Terms for Software Agreements for details.
- If necessary unpack the downloaded file. You may have already done this as part of
the download, in which case you should have a folder called
ciscovpn. If you have not unpacked the file, try double-clicking on it and see whether this unpacks the file or opens an archive manager that will allow you to extract the
ciscovpnfolder. If you cannot use this method to unpack the file, the following should always work.
- Open a terminal window (shell). The method will vary depending on your
distribution; typically you will find this command under the
[Applications]menu, usually in one of the following folders depending on your distribution:—
- Change directory to the location where you saved the downloaded file. If you're not familiar with using the command line the following commands will change directory to some standard locations.
- Unpack the file using the command
tar -xzvf filenamewhere filename is the name of the file you downloaded. For example
tar -xzvf anyconnect-vpn-linux-v3.tar.gz. This will create a folder called
ciscovpncontaining the files needed for installation.
- Open a terminal window (shell). The method will vary depending on your distribution; typically you will find this command under the
- If you haven't already opened a terminal windows (shell) then do so. If you're not sure how to do this, refer to the previous step above.
- Change into the
ciscovpndirectory. If you're not familiar with using the command line the following commands will change directory to some standard locations where you may have unpacked the folder.
- Start the installation program using the following command.
- The licence agreement will be displayed and you will be asked whether you accept
the terms of the agreement. Type
Enterif you agree.
- The installation should be very quick and you shouldn't be prompted for any
further information. If the installation is successful you will see that the VPN agent
is started as shown in the figure below.
- First make sure that you have connected to the Internet as you usually do, using either your broadband connection or a dialup connection (remember AOL, both dialup or broadband, is unsupported and may not work).
[Cisco AnyConnect Secure Mobility Client]program from the
[Applications]menu. This is most likely to be in a folder, also called
[Cisco AnyConnect Secure Mobility Client], under
[Internet]. However it may also show up initially under a folder called
[Other]and then move to the
[Internet]folder after you next reboot. Earlier versions of the AnyConnect client may show up directly under
[Internet]and are called
[Cisco AnyConnect VPN Client]. Two possible arrangements are shown below.
If you can't find the link on the
[Applications]menu then you can start the client from a terminal session by running the
vpnuicommand from the location where it has been installed. On Ubuntu the command would be
/opt/cisco/vpn/bin/vpnuiand it may be the same on other linux distributions.
- The first time you run the program, you will need to enter
vpn.ox.ac.ukand click on
Connect. Note that when you run the client next time, the
Connect to:box will be populated and you should see the username and password box automatically.
- If the connection is successful, you should see an icon with a padlock on the
menu bar near the clock. The icon will look different depending on whether you are
running the older (version 2.x) or the newer (version 3.x) client.
- If the connection is not successful, the icon will not show the padlock. Again the
icon will look different depending on whether you are running the older (version 2.x)
or the newer (version 3.x) client.
- Right-click on the
AnyConnect VPN Connectionicon in the menu bar.
- On the menu that appears, select
[Disconnect]and click with the left mouse button.
- The padlock will disappear from the icon. This means the VPN connection is
terminated but that the VPN client software is still loaded.
- If you want to reconnect you can right-click on the
[Connect]to re-open the program. If you want to completely quit the VPN client you choose
[Quit]instead. The icon should then disappear from your screen.
- Note that if your internet connection should be interrupted at any time, perhaps because you are using a wireless connection and it has disconnected temporarily, then you will have to re-establish your VPN connection as described above.
For answers to common questions and solutions to any more frequently encountered problems please see the Frequently Asked Questions for Cisco AnyConnect VPN Client web page. For further information you can also refer to the Cisco AnyConnect VPN Client release notes.