- Local computer with *nix installation
- VPS running ubuntu 16.04+ that has been configured with SSH no-password login
- Install Ruby and gems (Ruby 2.3+ recommended)
# If you use Ubuntu 16.04, you can run:
sudo apt-get install ruby gnutls-bin
sudo gem install sshkit sinatra os
# If you use macOS, you can run:
brew install gnutls
(sudo) gem install sshkit sinatra os
- Checkout this project and prepare
config.yml
cd PATH_TO_PROJECTO # Replace with real path
cp config.yml.skel config.yml
-
Edit
config.yml. Changedomain,user_cert_password, etc. -
Start deploy:
ruby deploy.rb
- Version 4.5 of Cisco AnyConnect app. Client for Windows, Linux, macOS is included in
clientsdirectory. iOS and Android users please use App Store and Play Store. - OpenConnect GUI is anther good choice. OpenConnect GUI is available for Windows (included in
clientsdirectory) and Android.
Do not delete certificates in certs directory.
If you want to deploy a new server, change domain in config.yml file and run deploy again.
user.p12 is your user certificate that can be used in Cisco AnyConnect client or openconnect command line tool. The user certificate can be used for all your servers.
After deployment, a local webserver will run. You may use it for user certificate import. e.g. Cisco AnyConnect may need an web address to import user's p12 certificate.
http://YOUR_LOCAL_IP:4567/user.p12
# e.g. http://192.168.0.100:4567/user.p12
You may also find the p12 file under:
/PATH_TO_PROJECTO/certs/user.p
5058
12
If you don't need it, feel free to press Ctrl-C and stop script running.