The Umbrella Documentation Hub

Welcome to the Umbrella documentation hub. Here you'll find access to all of our Cisco Umbrella user guides.

Get Started    

Configure the OrgInfo.json File

The OrgInfo.json file contains specific information about your Cisco Umbrella service subscription that lets the Security Roaming module know where to report and which policies to enforce. You can deploy the OrgInfo.json file and enable the Umbrella Roaming Security module from the ASA or ISE using CLI or GUI. The steps below describe how to enable from the ASA first and then how to enable from ISE.

Table of Contents

Manual or Device Management (Most Common)

Use this deployment type while deploying directly without a Cisco VPN profile.

  1. Download a copy of the configuration profile from the Umbrella Dashboard (see Quick Start Guide).
  2. Depending on your system, drop the file into:
    • Windows: %ProgramData%\Cisco\Cisco AnyConnect Secure Mobility Client\Umbrella\
      or
    • Mac: /opt/cisco/anyconnect/Umbrella/

If deploying after installing AnyConnect, the folder structure will already be in place. If deploying the OrgInfo.json before installing AnyConnect, you will need to create the folder before placing the file.

The client activates the Umbrella module once installed and OrgInfo.json is present in the Umbrella directory.

ASA CLI

  1. Upload the OrgInfo.json that you obtained from the Umbrella​ dashboard to the ASA file system.
  2. Issue the following commands, adjusting the group-policy name as appropriate for your configuration.
    Tip: The file name on the ASA is case sensitive. If the file you've uploaded is named "OrgInfo.json", it must be specified with a capital O and capital I.
    Just looking for the defaults? Use the value of "DfltGrpPolicy" below for <Group_Policy_Name>.
webvpn
    anyconnect profiles orginfo disk0:/OrgInfo.json

group-policy <Group_Policy_Name> attribute
    webvpn
        anyconnect profiles value orginfo type umbrella

group-policy <Group_Policy_Name> attributes
    webvpn
        anyconnect modules value umbrella

ASDM GUI

Note: ASDM 7.6.2 is required to configure the Roaming Security module through the GUI.

  1. Navigate to Configuration > Remote Access VPN > Network (Client) Access > AnyConnect Client Profile.
  2. Choose Add.
  3. Give the profile a name.
  4. Choose the Umbrella Security Roaming Client type from the Profile Usage drop-down list. The OrgInfo.json file populates in the Profile Location field.
  5. Click Upload and browse to the location of the OrgInfo.json file that you downloaded from the dashboard.
  6. Associate it with the DfltGrpPolicy at the Group Policy drop-down list or the policy of your choice. Refer to Enable Additional AnyConnect Modules to specify the new module name in the group-policy.

ISE

  1. Upload the OrgInfo.json from the Umbrella dashboard.
  2. Rename the file OrgInfo.xml.
  3. Follow steps in Configure ISE to Deploy AnyConnect.

Get the Roaming Security Module Up and Running < Configure the OrgInfo.json File > Enable Auto-update

Updated 6 months ago

Configure the OrgInfo.json File


Suggested Edits are limited on API Reference Pages

You can only suggest edits to Markdown body content, but not to the API spec.