Made another pass on a separate amd64 / x86_64 intrepid workstation and got it working.
Do not run the 'vpn' or 'vpnui' binaries as root (or via sudo).
Code:
# downloaded the latest Linux Anyconnect client from http://www.cisco.com
tar -xvzf anyconnect-linux-2.3.0185-k9.tar.gz
cd ciscovpn/
sudo ./vpn_install.sh
# Downloaded latest firefox from http://www.mozilla.com/en-US/firefox/
sudo tar -xvjf firefox-3.0.5.tar.bz2 -C /usr/local
for lib in libnssutil3.so libplc4.so libplds4.so libnspr4.so libsqlite3.so libnssdbm3.so libfreebl3.so ; do sudo ln -s /usr/local/firefox/$lib /opt/cisco/vpn/lib/$lib ; done
This was with 2.3.0185 with a public signed certificate. I then went back to the earlier workstation and ran 'vpn connect' not as root and it worked as well. That workstation has 2.2.0140 installed.
Bookmarks