PLABS
softwareguideswar roomaboutgo-home

RHEL: Cisco AnyConnect VPN Client
May 13, 2017

Operating System
Platform
Applications
RHEL
v7.3
x86_64
Cisco AnyConnect

I. Abstract

Here I will show you how to configure your RHEL system (should work the same for CentOS) to connect to a Cisco SSL VPN server. I'm doing this on a 64-bit system, so there will be extra steps. If you are using 32-bit, don't fret. Almost the same. One day someone should tell Cisco that 64-bit operating systems were released a while ago.

One thing to note. If you just install the Cisco client without these extra steps, it won't work, and you'll get strange errors (like "Warning: The following Certificate received from the Server could not be verified:" with no information). Lame.


II. Install and Setup the Operating Environment

Nothing is assumed here, except that you already have a working system.


III. Obtain the Client Software

This is another irritant of the Cisco VPN model. The clients are impossible to obtain. Assuming your server, upon access, will offer you the client - excellent. If not, here is the i386 Linux file you'll need (throw me in jail, Cisco!).


IV. Install Software, Link Libraries

You need to be root to do all this.

These may already be installed. Measure twice, cut once:

# yum install sqlite.i686 nspr.i686 nss.i686

Link some libs (yes, they use Firefox libraries):

# mkdir /usr/local/firefox
# cd /usr/local/firefox
# ln -s /usr/lib/libnss3.so
# ln -s /lib/libplc4.so
# ln -s /lib/libnspr4.so
# ln -s /usr/lib/libsmime3.so

I'm assuming your vpnsetup.sh file is in /usr/src for this:

# chmod +x vpnsetup.sh
# ./vpnsetup.sh


V. Test It!

If you're using Gnome, you now have a menu entry under "Internet" and can connect via the GUI. If you are using the CLI, the following command will get you up and running:

# /opt/cisco/bin/vpn connect vpn-server-hostname

Have fun!

 


© 2001-2018 Procyon Labs / Randal T. Rioux