tag:blogger.com,1999:blog-1570818906168332967.post199090963701721804..comments2024-01-09T14:32:49.408+02:00Comments on The Sysadmin Himself: Cisco Anyconnect: VPN Establishment capability from a Remote Desktop is disabled - wordaroundLevente Röghttp://www.blogger.com/profile/14054822837126238320noreply@blogger.comBlogger18125tag:blogger.com,1999:blog-1570818906168332967.post-15113994545523087592017-06-20T13:03:56.552+03:002017-06-20T13:03:56.552+03:00grtgrtShwetabloghttps://www.blogger.com/profile/12945314996642903763noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-40904641792541419782014-12-17T08:13:36.106+02:002014-12-17T08:13:36.106+02:00GoSupportNow or TurboMeeting should work equally a...GoSupportNow or TurboMeeting should work equally as well as TeamViewer in this case.<br />Anonymoushttps://www.blogger.com/profile/17402611636356003187noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-73620762285548203182014-06-03T21:01:13.833+03:002014-06-03T21:01:13.833+03:00Well, Unknown, this seemed like a great solution. ...Well, Unknown, this seemed like a great solution. Unfortunately, it does not work. I disabled IPv6 on the AnyConnect adapter. No difference. I can connect by RDP using the IPv6 address, but when I try to activate the VPN, I get the same message: 'VPN Establishment capability from a Remote Desktop is disabled. A VPN Connection will not be established.'<br /><br />I'm wondering if this might lead to a solution, but your suggestion, while interesting, does not quite solve the problem.Paulio7https://www.blogger.com/profile/09649786114727314932noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-87796576913097479722013-04-26T02:44:02.085+03:002013-04-26T02:44:02.085+03:00@JM -- I was in the same scenario as you. However,...@JM -- I was in the same scenario as you. However, I was able to overcome this restriction very easily -- actually *using* that little-known thing called IPv6. <br /><br />You can use any remote connection program of your choice (other than RDP -- personally, I prefer RealVNC), or the AutoIt solution mentioned earlier in the comments, then simply note your system's IPv6 address and connect through RDP that way. Just be sure to NOT include the zone index (% and numbers at the end of the address as displayed by ipconfig) when you connect -- RDP won't like that. <br /><br />This method is quite foolproof, at least unless your system administrator prevents you from modifying adapter settings (which, quite frankly, if they do that, you probably wouldn't have any administrative control over your computer whatsoever). Even if the admin tries to setup up the connection so that it re-routes IPv6 traffic, you can overcome this simply by disabling the IPv6 functionality on the AnyConnect adapter (AnyConnect makes its own adapter when it installs). This can be done per the standard network adapter properties page in Windows. With IPv6 disabled on the AnyConnect adapter, there will be nothing to stop you from connecting to your remote machine through its IPv6 address.<br /><br /><br /><br />Unknownhttps://www.blogger.com/profile/11998160881185582505noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-59198035381008089382013-03-10T23:51:37.707+02:002013-03-10T23:51:37.707+02:00In that case there's not much to do. Anyway, t...In that case there's not much to do. Anyway, this post is very old.Levente Röghttps://www.blogger.com/profile/14054822837126238320noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-14474793540378941682013-03-08T18:54:17.137+02:002013-03-08T18:54:17.137+02:00Tried this but the VPN service, once started, rest...Tried this but the VPN service, once started, restricts any network connection, channeling all traffic through the tunnel... meaning no separate network access. The minute you connect to your vpn the teamviewer connection is terminated.<br /><br />I have used company vpns and never been able to use local network resources as they are cut off. Interesting how this is supposed to work.JMhttps://www.blogger.com/profile/00696557462194069480noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-41574773077256420912012-12-31T20:07:19.494+02:002012-12-31T20:07:19.494+02:00The technical reason for why it works BOUBOU is be...The technical reason for why it works BOUBOU is because when the VPN is established a virtual tunnel interface is created with another IP. Your existing physical (whether wired or wireless) interface still has the same IP, which is why you can still communicate inbound/outbound with other hosts on the non-VPN. It's no different than having 2 physical interfaces other than the interfaced used for the VPN being virtual.<br /><br />When connecting to an HTTPS website, a virtual network interface isn't created but your computer still effectively creates an encrypted tunnel to just that one site so it can still be considered a VPN.Anonymoushttps://www.blogger.com/profile/12618262217689991834noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-65610440193978475442012-12-31T19:06:02.258+02:002012-12-31T19:06:02.258+02:00@BOUBOU The VPN creates a tunnel for specific data...@BOUBOU The VPN creates a tunnel for specific data to go down a specific path based on the destination for the data. If data doesn't have to go down that path then it can go out the non-VPN path. This is how you can still communicate with your internal PCs in your house even though you are connected to your company VPN. The same is true whether you are talking inbound or outbound. So, RDP will still work.<br /><br />Keep in mind that when you connect to a website using HTTPS, you are still making a VPN connection (it's a secure path) but only to the servers that represent that website. Your computer is still capable of talking to other websites, news servers, mail servers, IM clients, etc.Anonymoushttps://www.blogger.com/profile/12618262217689991834noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-54446650094750773372012-12-06T08:14:21.943+02:002012-12-06T08:14:21.943+02:00Hi,
I am not sure how you will be able to RDP the...Hi,<br /><br />I am not sure how you will be able to RDP the machine back once VPN has started. Once VPN starts all traffic will be redirected and then you will not be abe to RDP anymore (IP adress will change and them RDP won't be possible anymore)<br /><br />ThanksBOUBOUhttps://www.blogger.com/profile/05293782781149968097noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-6796827483491988602012-12-04T00:56:23.974+02:002012-12-04T00:56:23.974+02:00@levidos Just need to enter your path to the VPN e...@levidos Just need to enter your path to the VPN exe file and add your credentials. Note, this will most likely only work with Cisco clients 2.0.x<br />----------------------------------<br />Run("C:\\.exe")<br />WinWaitActive("Cisco AnyConnect VPN Client")<br /><br />Sleep(5000)<br />ControlSetText("Cisco AnyConnect VPN Client", "", "[CLASS:Edit; INSTANCE:2]", "")<br />ControlSetText("Cisco AnyConnect VPN Client", "", "[CLASS:Edit; INSTANCE:3]", "")<br /><br />Sleep(5000)<br />ControlClick("Cisco AnyConnect VPN Client", "Connect", 1016)Jeff Rhttps://www.blogger.com/profile/08238379589959163867noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-80510598822618051762012-02-21T15:05:05.252+02:002012-02-21T15:05:05.252+02:00AutoIt seems to be a very good idea. Can you post ...AutoIt seems to be a very good idea. Can you post the script please?Levente Röghttps://www.blogger.com/profile/14054822837126238320noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-30189719123510329372012-02-10T18:45:11.625+02:002012-02-10T18:45:11.625+02:00This is another solution: Use AutoIt to create a ...This is another solution: Use AutoIt to create a script that logs you in with Cisco Anyconnect 10 seconds after you kick it off. Then you RDP into your machine, kick off the script, close the RDP session, wait 20 seconds, then RDP back in.Valeriehttps://www.blogger.com/profile/10624214294669484560noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-68227153539330609472012-01-24T04:10:56.703+02:002012-01-24T04:10:56.703+02:00@Pete ... only if you have access to your VPN serv...@Pete ... only if you have access to your VPN server's configuration. If you don't then you need to have this type of workaround.Geoffhttps://www.blogger.com/profile/07742082018547168347noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-66438199778510423662011-12-20T12:45:33.057+02:002011-12-20T12:45:33.057+02:00You can solve this problem by creating a VPN profi...You can solve this problem by creating a VPN profile<br /><br />http://www.petenetlive.com/KB/Article/0000546.htmPetehttps://www.blogger.com/profile/09942228062437496134noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-67139306361642827312011-09-02T00:36:02.770+03:002011-09-02T00:36:02.770+03:00Thanks for this post and for including screenshots...Thanks for this post and for including screenshots. So few step-by-step guides include them and they can be very helpful for people who understand things better visually.--<a href="http://www.proxynetworks.com" rel="nofollow">http://www.proxynetworks.com</a>Anonymousnoreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-17683763033938866862011-07-24T03:39:57.575+03:002011-07-24T03:39:57.575+03:00Forgot to mention, you also need to restart the ma...Forgot to mention, you also need to restart the machine after installing TeamViewer in order for the necessary services to start.Levente Röghttps://www.blogger.com/profile/14054822837126238320noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-57107257479623247992011-07-24T03:38:50.044+03:002011-07-24T03:38:50.044+03:00Thanks for your feedback, I will test with the lat...Thanks for your feedback, I will test with the latest version of TeamViewer.<br />Meanwhile please make sure you're not using Teamviewer QS but the full version. The Quick Support version will not work in this scenario.Levente Röghttps://www.blogger.com/profile/14054822837126238320noreply@blogger.comtag:blogger.com,1999:blog-1570818906168332967.post-37148439833503769852011-07-12T16:42:32.503+03:002011-07-12T16:42:32.503+03:00Hey, I tried this out on the latest version of Tea...Hey, I tried this out on the latest version of TeamViewer but it fails to load correctly. I keep getting an error for fast user switching. I installed everything, but keep getting the same error.Anonymousnoreply@blogger.com