It actually does, but is non-obvious to configure. This assumes Windows
7 (XP I believe is a little different toward the end).
1. Log into your machine as a normal user, fire up the anyconnect client
and establish a VPN tunnel.
2. Open the anyconnect client window from the notification area icons in
the lower right.
3. Go to the connection tab and click on the "gears" (preferences)
button next to the Gatorlink VPN pull down.
4. Start before login should be presented as an option. Check it.
5. Disconnect from the VPN tunnel
From the machine login screen, select "Change User". A new icon will
appear in the lower right hand corner. Clicking it will fire up the VPN
client and allow you to form a VPN tunnel. You can then switch back to
your normal user and login.
Basically, the VPN client gets the connection policy on tunnel use, so
you have to have an established tunnel to configure some of the options,
and this is one of them. With 7 it uses the Switch User function to
start a new tunnel. I guess I should doc this huh? :-) I'll get it
added to the VPN client docs...
On 12/20/2011 12:37 PM, Randy Switt wrote:
> I just walked a colleague through adding a laptop to UFAD from offsite. I
> realized during the process that this would be *impossible* if the legacy
> VPN clients (I usually use the built-in l2tp client) weren't available, as
> the Cisco anyconnect client has no pre-login option (the old Cisco IPSEC
> client did).
> What's the policy going forward on this? There's definitely a need to
> support this situation for clients that don't have local UFAD domain
> controllers. Will the legacy clients be supported indefinitely, or will
> there be an anyconnect option for this? Note, that I'm not suggesting an
> "automatic" VPN connection, just one that can be started prior to system
> Randy S.
Chris Griffin [log in to unmask]
Sr. Network Engineer - CCNP Phone: (352) 273-1051
CNS - Network Services Fax: (352) 392-9440
University of Florida/FLR Gainesville, FL 32611