Arch Linux User Repository

Unfortunately, I don't have access to a version newer than 4.10.06079 yet. If there is someone who can help with the update package - please let me know - I'll add to the co-maintainers.

As the comment in the PKGBUILD says (you've read it, right? ;) ), Cisco does not provide public downloads for this, so you have to obtain the installer yourself either through your own Cisco account or through your company's.

Hello, how are you?

Note: Sorry for my English, I'm not very good and I had to use a translator

After a system update I had problems when trying to use the application.
Downgrading libxml is no longer viable, as some programs may stop working.
Another detail, this time you not only need the libxml 2.11.5-1 package, you must also use the glib2 2.78.0-3 and icu 73.2-2 packages. However, it is dangerous to Downgrade these packages on the system.
I read the link indicated by @FromSi and seeing the solution I decided to make some adaptations and tests and the way I did everything went well, now it's working.
One note, the topic states that you must modify the vpnagentd.service file but it is not necessary, just modify the script located in /usr/bin.

Here is the procedure done for cisco-annyconect 4:

1) Configuring the libraries, without "dirtying" the application:

mkdir -p ~/build/cisco-lib_other
cd ~/build/cisco-lib_other
wget -c https://archive.archlinux.org/packages/l/libxml2/libxml2-2.11.5-1-x86_64.pkg.tar.zst
wget -c https://archive.archlinux.org/packages/g/glib2/glib2-2.78.0-3-x86_64.pkg.tar.zst
wget -c https://archive.archlinux.org/packages/i/icu/icu-73.2-2-x86_64.pkg.tar.zst
tar --use-compress-program=unzstd -xvf libxml2-2.11.5-1-x86_64.pkg.tar.zst usr/lib
tar --use-compress-program=unzstd -xvf glib2-2.78.0-3-x86_64.pkg.tar.zst usr/lib
tar --use-compress-program=unzstd -xvf icu-73.2-2-x86_64.pkg.tar.zst usr/lib
sudo mkdir -p  /opt/cisco/lib_other
sudo cp -av usr/lib/lib* /opt/cisco/lib_other

2) Configuring the cisco-anyconnect script:

sudo cp -a /usr/bin/cisco-anyconnect /usr/bin/cisco-anyconnect_or
sudo sed -i "/export/s/lib/lib:\/opt\/cisco\/lib_other/" /usr/bin/cisco-anyconnect

The script will look like this:

#!/usr/bin/bash
export LD_LIBRARY_PATH=/opt/cisco/anyconnect/lib:/opt/cisco/lib_other:$LD_LIBRARY_PATH
cd /opt/cisco/anyconnect/bin
./vpnui

In order to test, I also forked the @ariel.miculas repository and updated it to version 5.1.1.42-1.
This version, you must configure the cisco-secureclient script. The procedure goes like this:

sudo cp -a /usr/bin/cisco-secureclient /usr/bin/cisco-secureclient_or
sudo sed -i "/export/s/lib/lib:\/opt\/cisco\/lib_other/" /usr/bin/cisco-secureclient

One observation that occurred in my tests with cisco anyconnect, when trying to connect, I got the following error:

cisco anyconnect you are missing the required libraries

The solution is to install the webkit2gtk package. It should be configured in depends instead of optdepends:

sudo pacman -S webkit2gtk

Now one last detail, my Profiles work normally in Cisco Anyconnect 4, but I was unable to make them appear in the list of connections in Cisco Secureclient 5.
If anyone has any solution, I would be grateful

EDIT:

Looking on a search site, I found a link with the solution to the list of connections for Cisco Secureclient 5 that I had mentioned.
In this version, you MUST create a directory named "profile" in ../vpn and add your "profile.xml" inside this directory.
You can also use the existing profile directory as a link. I tested both ways and both worked.

sudo mkdir -p /opt/cisco/secureclient/vpn/profile
sudo cp -av ~/myprofile.xml /opt/cisco/secureclient/vpn/profile

Diff for migrate to 5 versions:

7c7
< pkgver=4.10.07061
---
> pkgver=5.1.1.42
37c38
<     cd "${srcdir}/anyconnect-linux64-${pkgver}/vpn"
---
>     cd "${srcdir}/cisco-secure-client-linux64-${pkgver}/vpn"
41c42
<         install -Dm755 ${binary} "${pkgdir}/opt/cisco/anyconnect/bin/${binary}"
---
>         install -Dm755 ${binary} "${pkgdir}/opt/cisco/secureclient/bin/${binary}"
45,48c46,50
<     for lib in "libvpnagentutilities.so" "libvpncommon.so" "libvpncommoncrypt.so" \
<         "libvpnapi.so" "libacruntime.so" "libacciscossl.so" "libacciscocrypto.so" \
<         "cfom.so" "libboost_date_time.so" "libboost_filesystem.so" "libboost_regex.so" "libboost_system.so" \
<         "libboost_thread.so" "libboost_signals.so" "libboost_chrono.so" \
---
>     for lib in "cfom.so"\
>         "libacciscocrypto.so" "libacciscossl.so" "libacruntime.so"\
>         "libboost_atomic.so" "libboost_chrono.so" "libboost_date_time.so" "libboost_filesystem.so"\
>         "libboost_regex.so" "libboost_system.so" "libboost_thread.so" "libvpnagentutilities.so"\
>         "libvpnapi.so" "libvpncommoncrypt.so" "libvpncommon.so"\
50c52
<         install -Dm755 ${lib} "${pkgdir}/opt/cisco/anyconnect/lib/${lib}"
---
>         install -Dm755 ${lib} "${pkgdir}/opt/cisco/secureclient/lib/${lib}"
52c54
< #     rm -rf ${pkgdir}/opt/cisco/anyconnect/lib/libboost*
---
> #     rm -rf ${pkgdir}/opt/cisco/secureclient/lib/libboost*
56c58
<     ln -s /opt/cisco/anyconnect/lib/libaccurl.so.4.8.0 "${pkgdir}/opt/cisco/anyconnect/lib/libaccurl.so.4"
---
>     ln -s /opt/cisco/secureclient/lib/libaccurl.so.4.8.0 "${pkgdir}/opt/cisco/secureclient/lib/libaccurl.so.4"
61,62c63,64
<     for plugin in "libacwebhelper.so" "libvpnipsec.so"; do
<         install -Dm755 ${plugin} "${pkgdir}/opt/cisco/anyconnect/bin/plugins/${plugin}"
---
>     for plugin in "libvpnipsec.so" "libacdownloader.so" "libacwebhelper.so"; do
>         install -Dm755 ${plugin} "${pkgdir}/opt/cisco/secureclient/bin/plugins/${plugin}"
65c67
<     cp -R resources "${pkgdir}/opt/cisco/anyconnect/resources"
---
>     cp -R resources "${pkgdir}/opt/cisco/secureclient/resources"
68c70
<     install -Dm444 AnyConnectProfile.xsd "${pkgdir}/opt/cisco/anyconnect/profile/AnyConnectProfile.xsd"
---
>     install -Dm444 AnyConnectProfile.xsd "${pkgdir}/opt/cisco/secureclient/vpn/profile/AnyConnectProfile.xsd"
71c73
<         install -Dm444 ${file} "${pkgdir}/opt/cisco/anyconnect/${file}"
---
>         install -Dm444 ${file} "${pkgdir}/opt/cisco/secureclient/${file}"
75,76c77,78
<     install -Dm644 resources/vpnui48.png "${pkgdir}/usr/share/icons/hicolor/48x48/apps/cisco-anyconnect.png"
<     install -Dm644 resources/vpnui128.png "${pkgdir}/usr/share/icons/hicolor/128x128/apps/cisco-anyconnect.png"
---
>     install -Dm644 resources/vpnui48.png "${pkgdir}/usr/share/icons/hicolor/48x48/apps/cisco-secure-client.png"
>     install -Dm644 resources/vpnui128.png "${pkgdir}/usr/share/icons/hicolor/128x128/apps/cisco-secure-client.png"
78,79c80,81
<     sed -i "s|^Exec=.*|Exec=${pkgname}|g" com.cisco.anyconnect.gui.desktop
<     install -Dm644 com.cisco.anyconnect.gui.desktop "${pkgdir}/usr/share/applications/cisco-anyconnect.desktop"
---
>     sed -i "s|^Exec=.*|Exec=${pkgname}|g" com.cisco.secureclient.gui.desktop
>     install -Dm644 com.cisco.secureclient.gui.desktop "${pkgdir}/usr/share/applications/cisco-anyconnect.desktop"
87c89
<     install -Dm644 "vpnagentd.service" "${pkgdir}/usr/lib/systemd/system/vpnagentd.service"
---
>     install -Dm644 "${srcdir}/vpnagentd.service" "${pkgdir}/usr/lib/systemd/system/vpnagentd.service"
106c108
<     install -Dm644 "${srcdir}/AnyConnectLocalPolicy.xml" "${pkgdir}/opt/cisco/anyconnect/AnyConnectLocalPolicy.xml"
---
>     install -Dm644 "${srcdir}/AnyConnectLocalPolicy.xml" "${pkgdir}/opt/cisco/secureclient/AnyConnectLocalPolicy.xml"

and in cisco-anyconnect.sh need cahge LD_LIBRARY_PATh to new directory: /opt/cisco/secureclient/lib

If you don't know how to install libxml2-2.11.5-1: https://bbs.archlinux.org/viewtopic.php?pid=2141236#p2141236

@c3101, Thanks for your input! This also solved my problem coming from Artix base w/ runit.

" c3101 commented on 2023-11-21 13:47 (UTC) A recent upgrade of libxml2 broke anyconnect for me, I had to downgrade to > libxml2=2.11.5-1 and add it to IgnorePkg in pacman.conf in order to get anyconnect to work again. I assume it's not libxml2 fault, seems like they did some big changes and updates, but one has to wonder how long cisco is going to take with a fix of some sorts. " Here's what my IgnorePkg looks like now 😉

# Pacman won't upgrade packages listed in IgnorePkg and members of IgnoreGroup
IgnorePkg   = libxml2
#IgnoreGroup =

@marcin, Thanks. This is also required for my setup.

" marcin commented on 2023-10-26 23:05 (UTC) For MFA to work, libwebkit2gtk needs to be installed. "

@labaman here's the latest AnyConnect for Linux :) https://drive.google.com/file/d/1Mn2nVghxXIgodZn1xfV4tR4RNQOJ7fi8/view?usp=sharing

Hello,

Since some of the Arch updates in the last few days, I keep getting issues with the VPN connection starting and ending up with an error 'Connection Attempt has timed out. Please verify internet connectivity.'

Any tips to fix this?

A recent upgrade of libxml2 broke anyconnect for me, I had to downgrade to libxml2=2.11.5-1 and add it to IgnorePkg in pacman.conf in order to get anyconnect to work again. I assume it's not libxml2 fault, seems like they did some big changes and updates, but one has to wonder how long cisco is going to take with a fix of some sorts.

Also for what it's worth, I just got my AnyConnect vpn working with openconnect again! I had to paste in a user agent after it stopped working recently. The useragent I used is "AnyConnect Linux_64 4.10.07061" in case this helps anyone out. I'd rather not use this bad software made by a bad company so I'm removing anyconnect now :)

I have access to cisco-secure-client-linux64-5.1.0.136, would you like a copy? I installed it manually and it seems to work where this older one in the AUR starts transparent and then crashes as @xavierbaez said.

Let me know how you'd like me to share it and I will :)

Patches for latest secureclient can be found here: https://github.com/ariel-miculas/cisco-secureclient