Cisco AnyConnect Secure Mobility Client Room for Improvement

IT Security manager at a energy/utilities company with 201-500 employees

There is one very specific improvement that could be done regarding users logging in. When a user logs in with an expired password we did not know that the password reset function would prompt them for a new password and this system was able to be deployed on this solution. For 10 years, every 30 days, the salespeople who did not want to go inside and reset their password at the 29-day mark, would call me up and have me reset their password for them to gain access. Additionally, it would be beneficial to have at the level that I am at, the ability to sign in to this solution before you log in to the Windows environment without having to upgrade the license. This should be included in the full packages. 

Alternatively, when Cisco notices customers do not have this feature turned on they could call up its customers and inform them they do not have it turned on and could walk them through how to do it. It turned out to be just two lines of code to accomplish the task. In our case, during any of the interactions with Cisco over the years, they could have just mentioned to us this feature that would have real value-added to your employees. We do have a CCNA in-house and he did not realize that he could turn that feature on very easily. The white paper was probably available, but since our network administrator did not know about it, he never suggested setting it up. 

In an upcoming release, there should be better reporting capabilities, this is something that is available in premium packages, or if you were to get a Cisco ISE. Essentially, the upgraded reporting shows a live version of what is going on, but it does not show you historical information unless you hook it up to a SCIM, Cisco ISE, or Cisco ACS. This should be included in all packages and you should not have to upgrade or purchase other solutions.

View full review »
TM
DevSecOps at AssureThink

Even when your internet speed is good, once you connect to the VPN the speed gets automatically reduced, which is worrisome.

If there was an autosave password then it would have been much easier to connect.

By default, Cisco AnyConnect does not update to the newest version automatically and you can't change the setting to auto-update unless you are signed into the tool. Our company had stopped allowing an older version to connect, so staff that didn't have the auto-update setting enabled were still on the older version and couldn't sign in to update to the newest version. To fix this, they would have to have their IT support team come out and uninstall the old version then download and install the newest version.

View full review »
Project Manager at a security firm with 11-50 employees

We were going to use the Cisco AnyConnect with hardware tokens. However, right now, it's very complicated in terms of delivering the hardware token to the customer. That's why we are looking for a software token right now. I'm not sure how it's going to work. It's under review right now.

View full review »
Find out what your peers are saying about Cisco, Palo Alto Networks, OpenVPN and others in Enterprise Infrastructure VPN. Updated: June 2021.
512,711 professionals have used our research since 2012.
Member of the Board at a computer software company with 11-50 employees

The configuration from the client-side would be useful. Right now, it's not centralized. There should be a lock so that it can only be configured from one place.

The solution could use some sort of graphic interface or some kind of monitor to showcase the current network to help visualize the information.

View full review »
JB
BCM/ECM Manager at a comms service provider with 1,001-5,000 employees

I have been working with the same interface for the last ten years. I would say that it needs some improvements made. From the perspective of an end-user, It could be more attractive and a graphic interface would be better.

It's a problem having to balance the number of licenses with the number of physical users.

In the next release, I would like to see better graphics in the interface.

View full review »
MG
Quality Assurance Manager at a tech vendor with 1,001-5,000 employees

Sometimes I need to connect with Cisco AnyConnect and I don't have access to a Windows machine, so I need to run the client from a Linux machine. If I recall correctly, the last build for the Linux was five or six years ago. So, sometimes it happens that I have this issue with not being able to use Cisco AnyConnect just because I'm forced to use a Linux machine, and the client is very old and it doesn't connect to the current version they're running on the servers on which I want to connect, even though it should be compatible with the old version I have.

It's not really an issue from our side, though, because at the end of the day I always find the solution of connecting through a Windows machine but this requires at some point to connect through the VPN. I connect a Linux machine to a Windows machine, the Windows machine to one in the AnyConnect lines product just to connect to yet another Windows machine, which in turn I need to connect on a Linux machine, because in most cases, the actual servers around the world, the vast majority of them are running on Linux.

If they could simplify connections via other machines, like Linux or Mac OS X, it would be helpful.

View full review »
CO
Senior Quality Assurance at a tech services company with 11-50 employees

There are situations where the connection drops, and you may not even be aware of it until you try to do something critical. The reconnection feature can be improved.

In the next release, I would like to have a connection alert or a pop up that could tell you that you have been disconnected.

It would be an improvement to include a better interface and integration with other vendors.

View full review »
ZM
Head of Solutions Delivery (Systems) at a wellness & fitness company with 201-500 employees

Sometimes when you are on the VPN, it can be a little bit slow. This may not be a Cisco issue, per se.

View full review »
AE
Software Tester at a tech services company with 11-50 employees

The interface could be a little more modern looking and it would be nice for other users if it had easier integration.

Another point of improvement is that it is easy to forget that you are in a private network and it does not log you out automatically. I did not see that there is an option for that. It should log you out after a certain point. You can forget that you are browsing a private, local network. The logout should be automized and it should have a reminder that you have logged in into a private network.

View full review »
RN
Group VP Security and Compliance at a wireless company with 201-500 employees

Configuring the solution could be simplified. You tend to spend a bit of time on it right now. It could be made easier with better UI. All of the backend configurations are command-line and it's not helpful. It takes a little bit of effort to get the system up and running.

There's a lot of newer technologies that are displacing all of the VPN technologies. The solution could benefit from having a defragmenter and should offer Mac-based device control. 

Behavior analytics and other newer technologies should be integrated into the solution.

View full review »
AK
Senior Specialist: Concept Development at a computer software company with 5,001-10,000 employees

I think that the addition of single sign-on functionality would be helpful.

View full review »
SM
Senior Consultant at a comms service provider with 11-50 employees

The hotspots give me connectivity issues occasionally. It could be easier to use if it allowed me to choose the hotspot.

View full review »
BS
Network Specialist at a computer software company with 201-500 employees

The solution needs to add more options for clients.

There are too many VPN endpoints. It's not easy to switch between endpoints, which affects scalability.

It's difficult to change profiles. There are no menu buttons or checkboxes to make simple changes on the solution. It would be very simple to just add something in the menu to make account changes quick and easy.

The setup is a bit difficult to handle on the server-side.

View full review »
TH
Network Administrator

Often, there are new versions to install and that can be annoying for our users. 

Having to deal with a new version every two weeks is a bit overdone.

It would be useful to have an automatic install process where if you connect and you don't have the latest version, it should be automatically done.

View full review »
TK
IT Consultant at Kowalik IT Consulting

Every two weeks there was a new version to install which was annoying for the users. 

The price should be lower. 

View full review »
MD
Process specialist at a financial services firm with 1,001-5,000 employees

Cisco AnyConnect Secure Mobility Client would be perfect if it weren't for the fingerprint feature. I don't know how it will read my fingerprint on my computer. 

View full review »
Find out what your peers are saying about Cisco, Palo Alto Networks, OpenVPN and others in Enterprise Infrastructure VPN. Updated: June 2021.
512,711 professionals have used our research since 2012.