{"id":21,"date":"2020-07-03T23:04:39","date_gmt":"2020-07-03T23:04:39","guid":{"rendered":"https:\/\/blog.sbaranidharan.online\/?p=21"},"modified":"2020-07-09T16:02:04","modified_gmt":"2020-07-09T16:02:04","slug":"applescript-to-automatically-connect-to-cisco-anyconnect-vpn","status":"publish","type":"post","link":"https:\/\/blog.sbaranidharan.online\/index.php\/2020\/07\/03\/applescript-to-automatically-connect-to-cisco-anyconnect-vpn\/","title":{"rendered":"AppleScript to automatically connect to Cisco Anyconnect VPN!"},"content":{"rendered":"\n
\r\n\t\t\t\t<\/span>\r\n\t\t\t\tPost Views: <\/span>\r\n\t\t\t\t1,045<\/span>\r\n\t\t\t<\/div>\n\n\n\n

We can connect to Cisco AnyConnect VPN without providing the password and Accept each time.<\/p>\n\n\n\n

In my case, I’ve used Exchange. Microsoft Outlook (Exchange) uses the same password as I used for VPN. In Mac OS, we can retrieve this Exchange password from the keychain access app through \/usr\/bin\/security.<\/p>\n\n\n\n

But to access the keychain through security first we need to allow the app to access it. To do it, when we first run this app it will asks for the password to access the Exchange’s keychain. Once we entered the password we need to click “Always allow” instead of Allow (by clicking Always allow it will add entry in Access Control for security). Otherwise it will ask for the password again. We can verify if only these two applications are allowed to access the keychain by navigating to keychain access app and select Exchange -> GetInfo -> Access Control -> where you should see only two entries (Outlook and Security) as follows<\/p>\n\n\n\n

\"\"<\/figure>\n\n\n\n
on run {input, parameters}\n\tset vpn to do shell script "\/opt\/cisco\/anyconnect\/bin\/vpn status | grep -q 'Connected' && echo 'connected' || echo 'disconnected'"\n\tif (vpn is "connected") then\n\t\tdo shell script "\/opt\/cisco\/anyconnect\/bin\/vpn disconnect"\n\t\tsay "VPN is disconnected!"\n\t\tdisplay dialog "VPN is disconnected!" with icon caution buttons {"OK"} default button "OK"\n\telse if (vpn is "disconnected") then\n\t\tset username to do shell script "whoami"\n\t\tset exchangepasskey to do shell script "\/usr\/bin\/security find-generic-password -wl Exchange"\n\t\tset vpnnames to {"alias-1", "alias-2", "alias-4", "alias-4"}\n\t\tset vpnalias to {choose from list vpnnames}\n\t\tset output to do shell script "printf '" & username & "\\\\n" & exchangepasskey & "\\\\ny' | \/opt\/cisco\/anyconnect\/bin\/vpn -s connect " & vpnalias\n\t\tif (output contains "state: Connected") then\n\t\t\tsay "VPN is connected successfully!"\n\t\t\tdisplay dialog "VPN is connected successfully!" with icon 1 buttons {"OK"} default button "OK"\n\t\telse\n\t\t\tdo shell script "ps -ef | grep 'cisco' | awk '{print $2};' | xargs kill -9 > \/dev\/null 2>&1"\n\t\t\tsay "Error connecting VPN, try again! I have killed the running instances"\n\t\t\tdisplay dialog "Error connecting VPN, try again!" with icon stop buttons {"OK"} default button "OK"\n\t\tend if\n\tend if\n\treturn input\nend run<\/pre><\/div>\n\n\n\n
We also killed the running instance of VPN, in case of any error happened so that when we run the app next time, it will not throw any error.<\/p>\n\n\n\n
If you need it as an executable app, just contact me.<\/p>\n\n\n\n
Just extract the zip and copy the VPN.app to Applications folder. Now you got the app installed.<\/p>\n","protected":false},"excerpt":{"rendered":"
We can connect to Cisco AnyConnect VPN without providing the password and Accept each time. In my case, I’ve used Exchange. Microsoft Outlook (Exchange) uses the same password as I used for VPN. In Mac OS, we can retrieve this Exchange password from the keychain access app through \/usr\/bin\/security. But to access the keychain through […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":""},"categories":[6],"tags":[2,3,4,5],"jetpack_featured_media_url":"","_links":{"self":[{"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/posts\/21"}],"collection":[{"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/comments?post=21"}],"version-history":[{"count":12,"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/posts\/21\/revisions"}],"predecessor-version":[{"id":49,"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/posts\/21\/revisions\/49"}],"wp:attachment":[{"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/media?parent=21"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/categories?post=21"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.sbaranidharan.online\/index.php\/wp-json\/wp\/v2\/tags?post=21"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}