Cisco Anyconnect no policy server detected is an error that occurs when the Cisco VPN client cannot find a valid VPN server.
The Cisco AnyConnect VPN is a popular VPN solution. Many companies use it for their remote employees to connect securely to their network.
To clear the “Anyconnect No Policy Server Detected” error, first check Cisco AnyConnect VPN configuration settings and ensure that it’s not misconfigured. Also, if the Anyconnect version you are using is outdated, consider upgrading it to the latest version.
When you are using Cisco Anyconnect VPN software and get an error message saying, 'No Policy Server Detected,' it just means that connection to a remote VPN gateway is not established.
This article offers troubleshooting methods to solve the Anyconnect error.
Reasons Why Cisco Policy Server Is Not Detected
There are several reasons why you can receive this error:
- Your configuration settings are incorrect
- Software conflicts with your antivirus program or with Windows Defender
- You have an outdated version of Anyconnect
- There is a problem with the network adapter
- You have a corrupt or missing file on your computer
- The user account is not configured properly
- AnyConnect is not enabled on the ASA
- The remote access server is not reachable
- Bad installation of the AnyConnect client
How to Fix the Cisco Anyconnect No Policy Server Detected Error
You can resolve this error using various fixing methods. See below;
Solution #1: Check Your Configuration Settings
Incorrect configuration settings are among the most common causes of the “Anyconnect No Policy Server Detected” error.
So first, check the posture protocol configurations and ensure the settings are correct.
Follow the steps below:
- Select ProgramData in drive C.
- Click on Cisco and select Cisco AnyConnect Secure Mobility Client.
- Go to the ISE Posture tab.
- At Work Centers, go to Posture, then Client Provisioning, select Client Provisioning Policy,
- Then check the Rule for your Wired Network, then check the Agent Result.
- From the ClientProvisioning, go to Resources tab,
- Check the Agent Result of step no. 4, give attention to the ISE Posture.
From the Resources tab, check the ISE Posture of step no. 5. Check to confirm the Call Home List and Discovery Host settings are correct.
Solution #2: Check Your Protection Settings
You may find that your antivirus or Windows defender settings are blocking the Anyconnect software.
There can also be a conflict between the software restricting the policy server from being detected.
If this is the case, ensure that Cisco VPN client is allowed in Windows Firewall Settings.
Solution #3: You Have an Outdated Version of Anyconnect
Software updates are released regularly to accommodate new technology.
If you have an obsolete version of Anyconnect, you might consider updating to the latest version.
Regular updates are essential to any software. They can help fix bugs, have new features, and enhance speed.
Solution #4: Confirm That Your Network Adapter is Working
When your network is not working, your device cannot access network resources. So, it’s good to check whether the network adapter is working.
Here are the Steps:
- Select-control panel from the Start menu
- Click “Device Manager.”
- Locate “Network adapters.” An exclamation mark shows that your adapter is not working correctly.
- Right-click on the adapter and select properties to troubleshoot
- If troubleshooting does not fix the problem, go back to the adapters list
- Right-click on the adapter, then choose to update or uninstall the reinstall
Solution #5: Confirm That the File is Not Corrupt
Having a virus in your computer can corrupt Anyconnect files. This can lead to a “Cisco Anyconnect no policy server detected error.”
So, it’s good to have your computer protected at all times, especially if you spend most of your time on the internet.
If you download software that already has a bug, it can install correctly but won’t work as expected.
So, if you recently updated or installed new anyconnect software, you can install and reinstall it and check if it fixes the problem.
Always download software from trusted sites to avoid bugs in your system.
Solution #6: Check if User Account is Correct
Use the CSCS AnyConnect Profile Editor to edit the profile.
To do this, you will need to open a command prompt, type “CSCS,” and press Enter. Then type “anyconnect” and press Enter again.
This process will open the AnyConnect Profile Editor, where you can check if the user account is still valid or not.
If it’s inaccurate, you can add the user account again and configure it properly.
Solution #7: Enable AnyConnect on the ASA
You can enable AnyConnect on the ASA using ASDM or CLI.
If you are using ASDM:
- Navigate to configuration, then select “Remote Access VPN.”
- Go to Network (Client) Access and select SSL-VPN Settings.
- Check if AnyConnect is enabled or not.
- If it’s disabled, kindly click the Enable button to enable it.
If you’re using CLI, type “configure terminal” to enter the configuration mode and then type “Anyconnect enable.”
Solution #8: Verify the Network Connectivity
Connectivity is crucial for devices on a remote network to work effectively.
So, verify your network connectivity to confirm there’s access to the remote server. You can use ping to test your device’s connectivity to the network.
These are the steps:
- Click the start menu then type CMD to open the command prompt window.
- Type ping followed by the IP address of another machine on the network
- A successful ping test will show there’s network connectivity.
- For example, it will give you the average time it took for the other device to respond.
An unsuccessful ping test shows there’s no network connectivity.
For an unsuccessful ping test, you might receive messages such as unknown host, Destination host unreachable, and Request timed out.
Note: If your ping test was unsuccessful, it might be causing the error message, so ensure that your machine is communicating with other devices on the network.
Solution #9: Run the AnyConnect Diagnostics and Reporting Tool (DART)
This tool can generate and troubleshoot DART bundles such as logs and status information.
Step #1: Start the Cisco AnyConnect Secure Mobility Client window
Step #2: Select Diagnostics on the Statistics tab
Step #3: Choose Custom or Default bundle creation.
#Default:
Includes standard log files and diagnostic information, such as AnyConnect log files, computer information, and a description of what DART did and didn’t do.
DARTBundle.zip is the default name for the bundle, and it is stored on the local desktop.
#Custom:
This allows you to select which files should be included in the bundle (or which files should be added by Default) and where the bundle should be stored.
DART
DART begins building the bundle if you select Default. Follow the wizard prompts to specify logs, preference files, diagnostic information, and any other customizations if you choose Custom.
You can cancel DART if you notice that it’s taking too long to gather the data. You can reduce the selected files for it to run effectively.
Remember to analyze the generated information and debug any errors in the files.
Solution #10: Uninstall and Reinstall
If you still receive this error after trying all the above solutions, it’s time to uninstall your Anyconnect software.
If any bug restricts the software from working correctly, it will be erased after installing it.
After installing the software, scan your device for any viruses. Then, reinstall the Anyconnect software and check if the error has cleared.
Solution #11: Contact Cisco Customer Support
If you’re still receiving “Cisco anyconnect system scan no policy server detected,” try contacting the Cisco customer service.
Cisco has a platform for posting issues that their customers encounter when using their product.
So, it’s good to post on the forum first before calling or emailing their office.
Devices on a network can have many errors such as this. But they are easy to fix without the need for consulting experts.
Check the ISE posturing configuration settings to clear the “Cisco Anyconnect no policy server detected” error message. Also, ensure that your security settings are not limiting the Anyconnect software from functioning. Updating your software can also clear the error.
Read Next: Can you Have More than One Build on Kodi?
Bottom Line
Cisco anyconnect no policy server detected error can occur due to many reasons.
These include firewall or antivirus settings, misconfigured VPN servers, and servers that are incompatible with the new version of Cisco Anyconnect.
We hope this piece helps you solve this error.
Finn Wheatley holds a Master’s Degree in Computer Science from UCL, London. He helped small data science consultancy firms, helping large corporations to grow their data capabilities, deploy advanced machine learning-based analytics and troubleshoot tech-related issues. Check out more about him here.