Thread Info
  • State Not Answered
  • Locked Locked
  • Replies 8 replies
  • Subscribers 1 subscriber
  • Views 8558 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Cisco Anyconnect and Sophos Endpoint Security 9.7

Curious

I've been wacking my brain over this...We recently pushed Sophos out to the field and now remote employees are having issues connecting to vpn.  Our users are not administrators on their laptops. therefore when the vpn service is stopped, they cannot alter any settings to start the service. Therefore, our first-level support have no way of remotely assisting those users as they are not on our network due to not being able to vpn.

Ater pushing Sophos..it stops the cisco vpn service even though its set to start automatically.  if an administrator was to login and start the service, it will work...but as soon as the user reboots, it's back stopped. and gives the same below orginal error. 

"The VPN agent service is not responding. Please restart this application after a minute."

We are using the following:

Cisco AnyConnect VPN Client version 2.5.2019

Enterprise Console 4.7.0.13

Sophos Endpoint Security and Control 9.7

Windows 7 and XP client machine

Lenovo T510, T520, W510 and W520 laptops.... this seems to happen more on the lenovo 20 series laptops as oppose of the 10 series..(T520, W520)

We are not using Sophos Firewall...it's off and set to allow all traffic

Also we are not using NAC

I was onced informed to go into the registry and alter vpn service to depend on SAVService...now the issue seems to be intermitting...one week it's fine....three weeks later same error.. We were also looking into Sophos Web Security and other products but if we can't comb out these canks, this will be our first and last purchase as the feedback from our field users have been negative, indicating slow system performance and etc in addition to the vpn issue.

Please assist in anyway possible.

Thanks

:19779


This thread was automatically locked due to age.
  • 0

    Hello Curious,

    haven't seen this issue (neither with 9.7 nor 10.0, AnyConnect currently 2.5.3055 - dunno which version it was before, Lenovos but no 520 series). Sophos is not supposed to fiddle with this service so you should Support have a look at this issue.

    As to slow system performance - this might be real or just perceived. Without any details it's impossible to give any meaningful advice. Which product did you use before?

    Christian

    :19873
  • 0

    We went from Trend Micro Office Scan to Sophos Endpoint Security and Control 9.7..this VPN issue started after deploying Sophos.  If we unistall Sophos, Cisco Anyconnect works fine.  I dont understand where the conflict is coming from.

    :19919
  • 0

    Hello Curious,

    as I said, we don't have any troubles here with this setup. Given the complexity of today's systems one can't expect that a vendor can prevent all problems. And they rely not only on feedback but also on cooperation. As I said, please contact Support (they usually need the SDU logs - you can send them in with your request).

    Christian

    :19949
  • 0

    Sophos customer for over a year here.  I also started seeing this problem on a few of my laptops as well a few weeks (or maybe a month?) ago.  Were you ever able to find the solution?  Excluding the C: drive from the onaccess scanner allows the service to successfully start at boot, but isn't a good fix. 

    Lenvo T420

    Windows 7 x64 w/SP1

    Cisco AnyConnect VPN Client 2.5.3055

    Sophos Enterprise Console 4.5.0.9

    Sophos Endpoint Security and Control 9.5

    No using Sophos Firewall (only using Sophos AV)

    Do you have an existing case number opened on this? 

    :21753
  • 0

    Called and opened Support Case # 3089710 on this.  Working to try and find the fix. 

    :21757
  • 0

    Yes i also have a case open..not really sure if the solution would be found...seems like a goose chase we've been on. Sophos and cisco anyconnect was working well together before we transitioned into lenovo 20 series laptops..(T520, T420, W520) the allof the previous ones, T510s T500, R500, W510 laptops all work fine.

    :22163
  • 0

    This issue has been resolved...The Culprit is Lenovo Rapidboot.  Supposedly it’’’’s a utility design to reduce the boot time of PC running Windows 7 operating systems.  From what I’’’’ve read, rapidboot does not make the OS boot faster, but prioritizes program launch order. The reason the issue only occurred with Lenovo laptops and with only the 20 series is because the software was introduced to those models… 

    Thanks Sophos for the troubleshooting!

    :23357
  • 0

    I know that Sophos has found the culprit. 

    So what exactly is the solution to this issue?

    :25393