Macos – Mac OS X asks for Admin Username and Password twice before allowing access to Cisco AnyConnect VPN

cisco-anyconnectcisco-vpn-clientmacospasswordsvpn

OS X asks me — twice — to enter my admin username and password before it will let me connect to Cisco AnyConnect VPN. This is annoying and unnecessary.

Text of the prompt:

OS X wants to make changes. Type an administrator's name and password to allow this.

OS X wants to use the "System" keychain.

OS X wants to make changes

How can I configure the keychain to allow Cisco VPN access without prompting unnecessarily?

Best Answer

Found the answer on a Google Groups forum:

• Launch /Applications/Utilities/Keychain Access

• Select "System" from the Keychains menu in the upper left

• Select "Certificates" from the Category menu in the lower left

• Find the entry that corelates to your computer's name in the list on the right, and click on the disclosure triangle.

• Secondary click on the "Private Key" entry that appears and select "Get Info" from the contextual menu that appears.

• Select the Access Control tab.

• You can then either add AnyConnect to the the list at the bottom of the screen (more secure, but you will need to repeat this process anytime the version of AnyConnect changes), or toggle the radio button to "Allow all applications to access this item".

A similar answer shows a picture but provides fewer instructions