Meraki

Community

How do you keep Secure Client/AnyConnect up to date on your clients?

from_afar
Building a reputation
Friday
Friday

How do you keep Secure Client/AnyConnect up to date on your clients?

I noticed that our MSFT Defender vulnerability reports are showing that all of our SecureClient/AnyConnect clients are out of date and contain 2 vulnerabilities one of which is critical (CVE-2024-20337 and CVE-202420474). I deployed these over the summer and obviously they aren't auto-updating which I thought (hoped) they would. The MX-95 and MX-68 do automatically update weekly and report being up-to-date. However, on the SD-Wan > Client VPN > AnyConnect Settings page, the download links are for the same version that is already installed (5.1.6.103). We got the service and equipment from AT&T so don't have a direct contract number unfortunately so I can't download the latest version from the linked Cisco support page, but I was wondering how people are keeping their AnyConnect clients up to date. We do have Intune which is probably what I will try if/when I can get the download, but if there is a better tool or method I'd love to hear about it. 

 

Thanks. 

Labels:
0 Kudos
2 Replies 2
PhilipDAth
Kind of a big deal
Kind of a big deal
Friday
Friday

Without direct support, this is going to be tricky.  Personally, I like using the cloud managed Cisco Secure Client portal (example for APJC https://secure-client.apjc.security.cisco.com/).

 

You can select a software train, like "Latest", and it automatically keeps the clients up to date.  It also allows you to configure every aspect of the client.

 

But without a partner involved, it will be hard to get access and get it setup.  The portal itself is included in an AnyConnect subscription (which you probably have).

 

 

I tihnk your best patch forward would be to buy a Cisco Secure Client AnyConnect support contract via AT&T in your companies name, so you can get direct support, and directly download the clients yourself.

PhilipDAth
Kind of a big deal
Kind of a big deal
Friday
Friday

I posted some of the screenshots of the cloud management system of the prior system here:

https://community.meraki.com/t5/Security-SD-WAN/Cisco-AnyConnect-Updates-on-the-Meraki-MX-Security-A...

 

Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco account. If you don't yet have a Cisco account, you can sign up.
Labels
© 2024 Cisco Systems, Inc.