20

I am unable to launch the Cisco VPN Client successfully. When the splash screen reaches the step labeled "Opening cert store", it simply hangs and goes unresponsive.

Picture of the "Opening cert store" step

In the event viewer (eventvwr.exe) I found a warning stating:

The application (Cisco AnyConnect VPN Client, from vendor Cisco) has the following problem: To function properly, Cisco AnyConnect VPN Client must be reinstalled after you upgrade Windows.

Nothing else seemed to be amiss. Any good ideas on how to debug this further or solve the issue?

Hennes
  • 65,804
  • 7
  • 115
  • 169
Johny Skovdal
  • 1,265

2 Answers2

33

I finally found out what was causing this. A single answer by Chad Roeder on the Cisco support forums had the right solution:

  1. Open Microsoft Management Console (type mmc in Run or search).
  2. Add Snap-in "Certificates" (File -> Add/Remove Snap-in... -> [find and add "Certificates] -> Choose "My User account" -> OK)
  3. Go to the folder Personal/Certificates
  4. Remove any unwanted certificates (for me it was certificates added by Fiddler to enable SSL traffic debugging)
  5. Consider repeating step 2-4 but using "Computer Account" instead of "My User account".

I hope this helps making the solution more visible in online searches. :)

To mitigate this issue within Fiddler, either use the Fiddler CertMaker Extension (which does not add the certificates to your store in the first place) or use the QuickExec box below the Fiddler Web Sessions list to run the following command:

prefs set fiddler.CertMaker.CleanupServerCertsOnExit True
Johny Skovdal
  • 1,265
0

Add Cisco certificate to My User account Certificates, worked for me.

CN = Cisco Systems, Inc.
OU = Endpoint Security
OU = Digital ID Class 3 - Microsoft Software Validation v2
O = Cisco Systems, Inc.
L = Boxborough
S = Massachusetts
C = US
Toto
  • 19,304
ismail tutumluer
  • 1