Enable Local LAN Access for Printing and Local Resources for Secure Access VPN

Available Languages

Download Options

  • PDF     (4.4 KB)
    View with Adobe Reader on a variety of devices
  • ePub     (83.8 KB)
    View in various apps on iPhone, iPad, Android, Sony Reader, or Windows Phone
  • Mobi (Kindle)     (68.9 KB)
    View on Kindle device or Kindle app on multiple devices
Updated:March 26, 2026
Document ID:225498

Bias-Free Language

The documentation set for this product strives to use bias-free language. For the purposes of this documentation set, bias-free is defined as language that does not imply discrimination based on age, disability, gender, racial identity, ethnic identity, sexual orientation, socioeconomic status, and intersectionality. Exceptions may be present in the documentation due to language that is hardcoded in the user interfaces of the product software, language used based on RFP documentation, or language that is used by a referenced third-party product. Learn more about how Cisco is using Inclusive Language.

Issue

Users are unable to access local printers and other LAN resources while connected to the Secure Access VPN. The LAN Access while on VPN option is not working as expected.

Environment

  • Technology: Solution Support (SSPT - contract required)
  • Subtechnology: Secure Access - Secure Client Remote Access (VPN, Posture, Private Resource)
  • Product Family: SECACCS
  • Software Version: N/A
  • Local printers and LAN resources
  • Users are connected to VPN via Secure Client
  • Split tunnel configuration is not enabled

Resolution

To enable Local LAN access for users connected to Secure Access VPN:

  1. Navigate to VPN Profile > Connect > End User Connectivity > Virtual Private Network.

  2. Select the VPN Profile and click Edit.

  3. Go to Cisco Secure Client Configuration and click Client Settings.

  4. Enable Local LAN Access and click Save.

  5. Go to Traffic Steering and add 0.0.0.0/32.

  6. Wait for 10 minutes for profile change to be pushed to backend.

Verify

  1. Connect to the Cisco Secure access VPN using the Secure Client.

  2. Navigate to Preferences and ensure that the Allow local (LAN) access when using VPN (if configured) option is enabled.

  3. Click the gear icon and navigate to Route Details. Here you can see that the local LAN (0.0.0.0/0) is automatically detected and excluded from the tunnel.

Cause

Configuration Missing to enable Local LAN access.

Related Content

Revision History

Revision Publish Date Comments
2.0
26-Mar-2026
Initial Release, updates
1.0
11-Mar-2026
Initial Release
TAC Authored

Contributed by Cisco Engineers

  • Amit Arora
    Technical Consulting Engineer

Was this Document Helpful?

FeedbackFeedback

Contact Cisco

This Document Applies to These Products