Anyconnect Was Not Able to Establish a Connection to the Specified Secure Gateway

Anytime the Anyconnect client can’t successfully perform a connection process between your computer and the VPN server,  you will receive the message ”Anyconnect was not able to establish a connection to the specified secure gateway.” 

Suppose you know a thing or two about networks, security, and protocols. In that case, you’ll be able to get more pieces of helpful information from observing at what stage during the initialization and connection process, Anyconnect ran into problems resulting in the error message above.

Anyconnect Was Not Able to Establish a Connection to the Specified Secure Gateway

Some users periodically start running into this problem without any apparent reason or commonality between their settings, ISP’s or operating systems, often leaving even Cisco’s support without a quick solution.

In essence, most causes for this issue fall into one of three categories:

1. Antivirus or firewall on the computer are not allowing Anyconnect to establish a connection

2. Anyconnect  client is not set up correctly

3. Network or ISP enforced some restrictions to what can go through

Consequently, you can solve the problem by crossing out those categories, one at a time. Let’s start from the top.

Disable Antivirus or/and Firewall

A third-party antivirus program can often block some features and limit connectivity for different programs and clients. Especially after updates, when the program is still learning which activities your programs are performing can be potentially harmful to your system.

Temporarily disable antivirus if you’re using one and try to connect. If you don’t use third-party antivirus software, a windows firewall could cause the problem, but it is less common. To disable Windows firewall go to:

Disable Conflicting Internet Connection Sharing Service

Some users managed to pinpoint the cause of the problem with connectivity to the conflict between the Windows built-in service and Anyconnect’s client. They were able to solve the problem by disabling the service temporarily, then establishing a connection with Anyconnect, and turning the service back on with no further issues.

You can do this by pressing the Win + R keys and typing “services.msc” into the bar. Press Enter. Now scroll down alphabetically until you find the above service. Right-click on it and then choose “Stop.” Close the window and try to connect to see if it worked. 

Change Local Policy

More than a few users reported changing the local policy fixed their problem. They changed the file temporarily, connected to the server, then changed it back without having any issues with Anyconnect not connecting to the server from that point on.

Go to:

C:\ProgramData\Cisco\Cisco AnyConnect Secure Mobility Client\AnyConnectLocalPolicy.xml and and change the value to <BypassDownloader>true</BypassDownloader>. After connecting to the server, open the same xml file and change back the value to false

Disable ->Connect -> Enable Internet Connection Sharing (ICS)

To disable this sharing, open the Control Panel by typing “cpl” into the search bar on the bottom of the desktop and left-clicking on the app.

Now open Network and Internet Sharing and then select Change adapter settings.

Right-click on the shared network connection, then left-click on Properties.

In the properties window, click on the Sharing.

Uncheck the checkbox next to “Allow other network users to connect through this computer’s Internet connection.”

Click OK.

Stick to the One Network in AnyConnect VPN

One of the known causes of the connectivity issue happens when your computer receives signals from multiple AP’s, switching between them to get the strongest one. To prevent this, you’ll need to tell the Anyconnect client to stick to the one current network.

Open the AnyConnect Client, right-click on Network, then click on.“Connect only to current Network.”

Update Anyconnect Client

If nothing above worked, contact your network administrator and see if your client is up to date or not. Cisco is fixing many known issues in each new version of the software, and it is vital to keep the client version updated. 

Try Using Different Connection

To eliminate the possibility that your network or ISP placed some restrictions on what kind of connections and protocols they will allow through, try switching between different wireless networks or between wireless and mobile data


If your Anyconnect is not able to establish a connection to a specified secure gateway, you can feel cornered and in trouble, especially if you’re using it to work remotely. Luckily, there are a few things you can do to overcome this problem. Start by temporarily disabling a third-party antivirus software that might be blocking your connection.

Recommended reading:

If you’re not using third-party antivirus software, temporarily disable Microsoft defender. In case that doesn’t help, try disabling the internet connection service in charge of providing NAT, DHCP, and other stuff you need to go online.

Since Anyconnect will need to take over those tasks, it would be good to disable this service until you establish a connection, then enable it once again.

Other known fixes include Disabling the internet connection sharing, changing the local policy, fixing the link to a specific wireless network, using a different network or ISP, and updating the Anyconnect client.

We hope one of them will solve your problem as well.

Leave a Comment