Cisco anyconnect vpn

General system Applications
1

i need to isntall anyconnect to be able to connect to gitlab for my work but when i did, i keep getting this error

you are missing the required library for authentification method you requested

image
image440×506 18.5 KB

anyone encountered this issue? any ideas how to solve it? i found a tip to install sudo pacman -S webkit2gtk but it did not work.

any help appreciated

2

Try installing openconnect.

$ pacman -Si openconnect

Repository      : extra
Name            : openconnect
Version         : 1:9.12-1
Description     : Open client for Cisco AnyConnect VPN
Architecture    : x86_64
URL             : https://www.infradead.org/openconnect/
Licenses        : LGPL2.1
Groups          : None
Provides        : libopenconnect.so=5-64
Depends On      : libxml2  gnutls  libproxy  vpnc  krb5  lz4  pcsclite  stoken  tpm2-tss  oath-toolkit  libproxy
                  libp11-kit  xdg-utils  libstoken.so=1-64  libtss2-esys.so=0-64  libtss2-mu.so=0-64
                  libtss2-tctildr.so=0-64  libxml2.so=2-64  libproxy.so=1-64  libhogweed.so=6-64  libp11-kit.so=0-64
                  libpskc.so=0-64  libgssapi_krb5.so=2-64  libpcsclite.so=1-64
Optional Deps   : python: tncc-wrapper
Conflicts With  : None
Replaces        : None
Download Size   : 866.81 KiB
Installed Size  : 3899.11 KiB
Packager        : Antonio Rojas <arojas@archlinux.org>
Build Date      : Fri May 26 00:44:17 2023
Validated By    : MD5 Sum  SHA-256 Sum  Signature

Perhaps you will need networkmanager-openconnect too.

More info: https://wiki.archlinux.org/title/OpenConnect

3

openconnect i have also… this is what i try…

image

confusing… :roll_eyes:

4

Please refer to the wiki article I posted above.

According to it, you would need to use sudo ...

5

mmm… no… there is something with the SSO single sign-on (SSO) as described in the doc, but i dont really know what I am doing wrong…

it should somehow open a web browser and allow to authenticate… but it just does not happen :frowning:

6

There is this [SOLVED] thread on Arch’s forum about the same issue.

There is a suggestion at the end of the thread to install one or another package from AUR to make this work.

https://bbs.archlinux.org/viewtopic.php?id=277082

HTH!

7

well… i have installed this git package https://aur.archlinux.org/packages/networkmanager-openconnect-useragent-git no progress… it still doesnt even pop up the web window where i could insert my credentials, which is something the guy in the threat at least managed to have by default…

I mean - is there something extra i need to do after installing it? some configuration or whatever? connection to firefox browser? Still this annoying error with sso and i am completely stuck …

image

8

hmm… so the workaround with python venv described in the thread works but it is very very very unwieldy.
basically i need to activate venv everytime + run a command to open sso window, then put the credentials, confirm two factor on mobile add sudo password and yes… i am connected.

uufff…

to make it even worse, when i disconnect from the vpn, basically all my connections stop working so i need to reload/restart then (either wifi of cable).

this is obviously pretty bad and extremely anoying and if i dont find a better solution, i will probably be forced to switch to an OS where this vpn crap just works, since i have to use it all the time… :frowning:

9

i hate cisco so much, its overengineered garbage… you should install windows in a virtual machine, then you can copy the files with ssh or something

10

i solved it by installing sudo pacman -S webkit2gtk

1 Like
11

You should be able to use openconnect, without the Cisco client, to connect.

sudo openconnect --protocol=anyconnect ip.to.connect.to -u user --servercert pin-sha256:thisPin -s ‘vpn-slice internal.ip.to.slice.x/xx’

The pin should be revealed, when you try to connect the first time. The password for the server will be ask during connection.