MacOS 11 (Big Sur) Introduction. The latest version of AnyConnect leverages the System Extension framework available in macOS 11 (Big Sur). This differs from past AnyConnect versions, which rely on the now-deprecated Kernel Extension framework. There are important changes in approving the AnyConnect system extension, as detailed in the next.
Big Sur is here and there is a lot of changes under the hood. One of them is the switch from Kernel Extensions to System Extensions. It has been a while since the Kernel Extensions are deprecated but now, time is over, they are not supported anymore.
- Oct 12, 2020 AnyConnect 4.9.04xxx leverages the System Extension framework available in macOS 11 (Big Sur). This differs from past AnyConnect versions, which rely on the now-deprecated Kernel Extension framework. This is the minimum version required to run AnyConnect on macOS 11.
- Appendix: AnyConnect Changes Related to macOS 11 (Big Sur) You must be running AnyConnect 4.9.04xxx (or later) for macOS 11. It leverages the System Extension framework available in macOS, while it formerly used the now-deprecated Kernel Extension framework.
So as a Jamf admin, you’ll have to do some changes if you have already allowed some kernel extensions, for example for an antivirus or VPN.
Let’s see how we can allow these system extensions, and avoid popups like this to your users.
Here we have a Configuration Profile, used to allow Cisco Anyconnect VPN on a macOS 10.15
As you can see, I’ve just provided the Team ID and it was good. But with Big Sur, it’s not enough. You’ll have to give the exact name of each System Extension. Here is the macOS 11 version of the same CP :
As you can see, I had to provide the full name of the allowed System Extension. But how do we find it ?
You can use this spreadsheet, filled by the community. But, as everyone can edit, you can’t be sure the data are accurate. And as you should not have to do it more than one or two times a year, I recommend to use the manual way.
First, on a test Mac, install the software and approve manually the System Extension. Then open a terminal and type
Here we have the name of our System Extension that you’ve allowed before. You can now fill your Configuration Profile with the informations needed. Be careful to choose System Extension and not Approved Kernel Extensions.
NOTE: If you have an FBRI-provided Mac, the Cisco Anyconnect Client is already installed. Please skip to Starting the VPN Client below.
Cisco Anyconnect Macos Big Sur Windows 10
Installing the VPN Client
Cisco Anyconnect 4 9 X64 Free Download
- Download the AnyConnect VPN client for Mac OS X.
- In your Downloads folder, double-click the file you just downloaded to open it. An icon will appear on the desktop called AnyConnect, and a separate window will open.
- Double-click on AnyConnect.mpkg to run the installer, then follow the steps to complete the installation.
- When you see this screen, UN-check everything with the exception of VPN: (VPN option grayed out? Go here.)
- Starting with macOS 10.13 High Sierra: During the installation, you will be prompted to enable the AnyConnect software extension in the System Preferences -> Security & Privacy pane. The requirement to manually enable the software extension is an operating system requirement.
Starting the VPN Client
NOTE:The VPN will not connect if you are connected to the FBRI wired or wireless network.
- In your Applications folder, go to the Cisco folder and double-click the Cisco AnyConnect Secure Mobility Client.
- Enter vpn.vtc.vt.edu in the Ready toConnect to field, then press the Connect button.
- Enter your FBRI username and password, then click OK.
- A banner window will appear. Click Accept to close that window. You are now connected!
Disconnecting the VPN Client
Cisco Anyconnect Macos Big Sur
When you are finished using the VPN, remember to disconnect (failing to disconnect can result in being unable to access resources if you are on-site at the Research Institute).
- Click the AnyConnect client icon located in the menu bar near the top right corner of your screen.
- Select Quit.