Hi,
thought I'd try my luck on here, since Meraki Support rejected my case because they don't provide extended support for the AnyConnect client and VPN profiles. We've got multiple customers using the AnyConnect client on Windows and with default settings the client shows up each time a network change is detected, which is just infuriating. Upon searching the web I've found multiple settings which helped in some cases but not all.
<AutomaticVPNPolicy>true
<TrustedDNSDomains>corp.customer.com</TrustedDNSDomains>
<TrustedNetworkPolicy>Disconnect</TrustedNetworkPolicy>
<UntrustedNetworkPolicy>DoNothing</UntrustedNetworkPolicy>
<BypassConnectUponSessionTimeout>false</BypassConnectUponSessionTimeout>
<AlwaysOn>false
</AlwaysOn>
</AutomaticVPNPolicy>
# Define the path and property
$registryPath = "HKCU:\Software\Cisco\Cisco Secure Client"
$propertyName = "EnableStatusPopups"
$propertyValue = 0
$propertyType = "DWORD"
# Check if the path exists
if (-not (Test-Path $registryPath)) {
# Create the path
New-Item -Path $registryPath -Force
}
# Create or update the property
New-ItemProperty -Path $registryPath -Name $propertyName -Value $propertyValue -PropertyType $propertyType -Force
Does anyone have any idea why the client still shows up out of nowhere? It just pops up on the main screen even though "Show Notifications" is disabled.
Solved! Go to solution.
I've found a solution, I guess writing everything down helped to point me in the right direction. If anyone ever has the same problem, here's what I had to adjust.
<DisableCaptivePortalDetection UserControllable="true">true</DisableCaptivePortalDetection>
<AutomaticVPNPolicy>true
<TrustedDNSDomains>corp.customer.com</TrustedDNSDomains>
<TrustedNetworkPolicy>Disconnect</TrustedNetworkPolicy>
<UntrustedNetworkPolicy>DoNothing</UntrustedNetworkPolicy>
<AlwaysOn>false
</AlwaysOn>
</AutomaticVPNPolicy>
# Define the path and property
$registryPath = "HKCU:\Software\Cisco\Cisco Secure Client"
$propertyName = "EnableStatusPopups"
$propertyValue = 0
$propertyType = "DWORD"
# Check if the path exists
if (-not (Test-Path $registryPath)) {
# Create the path
New-Item -Path $registryPath -Force
}
# Create or update the property
New-ItemProperty -Path $registryPath -Name $propertyName -Value $propertyValue -PropertyType $propertyType -Force
# Define the path and property
$registryPath = "HKCU:\Software\Microsoft\Windows\CurrentVersion\Notifications\Settings\Cisco.SecureClient"
$propertyName = "Enabled"
$propertyValue = 0
$propertyType = "DWORD"
# Check if the path exists
if (-not (Test-Path $registryPath)) {
# Create the path
New-Item -Path $registryPath -Force
}
# Create or update the property
New-ItemProperty -Path $registryPath -Name $propertyName -Value $propertyValue -PropertyType $propertyType -Force
Frustrating to deal with this for a paid enterprise software, but I guess we all have to. I couldn't find a solution in any forum, hopefully this will help someone else.
That's not really a solution, once you start it, it will pop up even if you're connected. And in what world would a customer accept this 😅? I've posted my findings below, still can't wrap my head around the fact the pop-up is a default behaviour and has to be disabled through so many settings. I guess they all work on MacBooks.
I've found a solution, I guess writing everything down helped to point me in the right direction. If anyone ever has the same problem, here's what I had to adjust.
<DisableCaptivePortalDetection UserControllable="true">true</DisableCaptivePortalDetection>
<AutomaticVPNPolicy>true
<TrustedDNSDomains>corp.customer.com</TrustedDNSDomains>
<TrustedNetworkPolicy>Disconnect</TrustedNetworkPolicy>
<UntrustedNetworkPolicy>DoNothing</UntrustedNetworkPolicy>
<AlwaysOn>false
</AlwaysOn>
</AutomaticVPNPolicy>
# Define the path and property
$registryPath = "HKCU:\Software\Cisco\Cisco Secure Client"
$propertyName = "EnableStatusPopups"
$propertyValue = 0
$propertyType = "DWORD"
# Check if the path exists
if (-not (Test-Path $registryPath)) {
# Create the path
New-Item -Path $registryPath -Force
}
# Create or update the property
New-ItemProperty -Path $registryPath -Name $propertyName -Value $propertyValue -PropertyType $propertyType -Force
# Define the path and property
$registryPath = "HKCU:\Software\Microsoft\Windows\CurrentVersion\Notifications\Settings\Cisco.SecureClient"
$propertyName = "Enabled"
$propertyValue = 0
$propertyType = "DWORD"
# Check if the path exists
if (-not (Test-Path $registryPath)) {
# Create the path
New-Item -Path $registryPath -Force
}
# Create or update the property
New-ItemProperty -Path $registryPath -Name $propertyName -Value $propertyValue -PropertyType $propertyType -Force
Frustrating to deal with this for a paid enterprise software, but I guess we all have to. I couldn't find a solution in any forum, hopefully this will help someone else.
I agree, on 4.10XXXX Just disable notifications.