Cisco Anyconnect Patch Management

Maclife
New Contributor III

Hey, I am searching for a method how to use patch management with Cisco Anyconnect VPN. 

Since it is not available in the standard jamf catalogue. I know you can create your own patches with the Title editor.

But therefore I would either need an external source or a json file with the settings since I never created this before.

If someone maybe has some information or hints I would really appreciate that

1 ACCEPTED SOLUTION

Tribruin
Valued Contributor II

You don't "need" an external source or JSON file to use Title editor, but, frankly it is a pain, especially when you first set up a new title. With AnyConnect it was pretty easy as we have only had a few different versions over the years. The first entry is the hardest as you have to setup everything. Once the first is done, you can just clone it and change the version and it should be good. 

Here are my settings for Cisco AnyConnect:

Tribruin_0-1689965282309.png

Tribruin_1-1689965311759.png

Tribruin_2-1689965333677.png

Tribruin_3-1689965353578.png

Tribruin_4-1689965370726.png

Tribruin_5-1689965386358.png

Tribruin_6-1689965419430.png

 

View solution in original post

8 REPLIES 8

Tribruin
Valued Contributor II

You don't "need" an external source or JSON file to use Title editor, but, frankly it is a pain, especially when you first set up a new title. With AnyConnect it was pretty easy as we have only had a few different versions over the years. The first entry is the hardest as you have to setup everything. Once the first is done, you can just clone it and change the version and it should be good. 

Here are my settings for Cisco AnyConnect:

Tribruin_0-1689965282309.png

Tribruin_1-1689965311759.png

Tribruin_2-1689965333677.png

Tribruin_3-1689965353578.png

Tribruin_4-1689965370726.png

Tribruin_5-1689965386358.png

Tribruin_6-1689965419430.png

 

Maclife
New Contributor III

Thx a lot. I will give it a try 

Maclife
New Contributor III

ok cool looks good so far. One more question have you configured any apps to be quited before installing? Like Anyconnect client needs to be quitted or something before upgrading!?

Tribruin
Valued Contributor II

I don't use Patch Management for patching. I use it strictly for version tracking and creating Smart Groups. 

Maclife
New Contributor III

ok and how do you do patching then? With policies and smart groups?

junjishimazaki
Valued Contributor

Hi Maclife, why are you using Jamf to upgrade Cisco AnyConnect? Why not use Cisco ISE to upgrade the Cisco VPN client? 

Well ask out network admins 😀

Yes, please do so. The only thing you need to update in Jamf is the VPN client for new deployment or if you have it available in self-service.