‎12-17-2021 07:44 PM
‎01-10-2022 11:06 PM
‎12-21-2021 08:51 PM
‎12-22-2021 07:10 PM
fjca wrote:
Can you check the Mac Address on the VPN adapters on the machines ?
At least in our (pretty standard) Cisco Anyconnect setup, it is always the same,00:05:9A:3C:7A:00 ...
From your description, it seems to be changing MAC's, but why is Lansweeper duplicating clients based on that seems wrong also...
And those DNS prefixes, that also seems odd...is the client doing DNS Dynamic Registration ?
‎12-20-2021 01:51 PM
Cripple.Zero wrote:
Hopefully the title/sub-title says it all.
To elaborate:
We utilize 2 VPN software suites in our company, both FortiNET Forticlient and Cisco AnyConnect. AnyConnect users' assets are generating IPs upon connection (as do Forticlient users' assets). But the difference is, while DNS/DHCP records of the Forticlient assets recycle the asset ID and match it appropriately, AnyConnect assets continue to generate separate asset IDs, thereby driving up license counts.
Additionally, and I don't know if this is related to AnyConnect specifically or if it was custom scripting, but AnyConnect Surface tablet users' assets not only generate multiple asset IDs, but also generate pseudo-redirect DNS entries with the prefix of "ON" or "OF" (believed to indicate online or offline), also creating multiple asset IDs.
I have not found a successful way to merge the assets automatically. And with 1000s of users, I don't have the time to go in manually and delete the multiples. I've also tried to find a commonality b/w all the duplicated assets to see if I can add an exception to scanning. There are none.
As much as LS is an impeccable product, I would like to shy away from spending more money to up the asset license to "fix" this.
Has anyone run into this? Is there a fix?
‎12-22-2021 07:09 PM
RKCar wrote:Cripple.Zero wrote:
Hopefully the title/sub-title says it all.
To elaborate:
We utilize 2 VPN software suites in our company, both FortiNET Forticlient and Cisco AnyConnect. AnyConnect users' assets are generating IPs upon connection (as do Forticlient users' assets). But the difference is, while DNS/DHCP records of the Forticlient assets recycle the asset ID and match it appropriately, AnyConnect assets continue to generate separate asset IDs, thereby driving up license counts.
Additionally, and I don't know if this is related to AnyConnect specifically or if it was custom scripting, but AnyConnect Surface tablet users' assets not only generate multiple asset IDs, but also generate pseudo-redirect DNS entries with the prefix of "ON" or "OF" (believed to indicate online or offline), also creating multiple asset IDs.
I have not found a successful way to merge the assets automatically. And with 1000s of users, I don't have the time to go in manually and delete the multiples. I've also tried to find a commonality b/w all the duplicated assets to see if I can add an exception to scanning. There are none.
As much as LS is an impeccable product, I would like to shy away from spending more money to up the asset license to "fix" this.
Has anyone run into this? Is there a fix?
We also have a combination of FortiClient + AnyConnect in our environment and I just verified we do not have this issue. Are you syncing from any additional sources that need to be noted? Intune? No mac randomization going on anywhere? By pseudo-redirect DNS entries I'm assuming you are saying that they are not actually populating in DNS and are only in Lansweeper? Are you able to replicate it? If so I'd like to know the steps and I can test it out in my environment as well.
Experience Lansweeper with your own data. Sign up now for a 14-day free trial.
Try Now