05-06-2010 10:38 AM - edited 03-11-2019 10:41 AM
i have a new ASA 5520 with only factory default settings. I ran the commands below on the CLI as instructed for a Cisco document but i cannot access it via https://192.168.1.1/admin like it says i should be able to.
Step 1 To identify the IP addresses from which the security appliance accepts HTTPS connections, enter the following command for each address or subnet:
hostname(config)# http source_IP_address mask source_interface
Step 2 To enable the HTTPS server, enter the following command:
hostname(config)# http server enable
Step 3 To specify the location of the ASDM image, enter the following command:
hostname(config)# asdm image disk0:/asdmfile
when i ran step 3 i got a printout of Device manager image set, but unable to find disk0: /asdmfile??
any help ?
Solved! Go to Solution.
05-06-2010 12:35 PM
Hi Joseph,
You need to add:
http 192.168.1.0 255.255.255.0
So, if you are connected via inside, the command would be
http 192.168.1.0 255.255.255.0 inside
HTH
Ashu
05-06-2010 10:49 AM
Check "sh disk0:" to see if you have an ASDM image. And then point to it with the "asdm image " command. Make sure there are no typos.
If there is no image, you need to copy it to disk0: from a tftp server.
Make sure you use an image compatible with your ASA. 8.0 and 8.2 can work with ASDM 6.2.
I hope it helps.
PK
05-06-2010 11:29 AM
the file in disk0 is asdm-621.bin. i ran the command with this file destination still with no success??
05-06-2010 11:55 AM
Hi Joseph,
What do you see under "show run asdm" ?
Ashu
05-06-2010 11:57 AM
ciscoasa# show run asdm
asdm image disk0:/asdm-621.bin
no asdm history enable
05-06-2010 11:59 AM
Hi Jospeh,
That means the image is correctly set and is pointing to 621.bin. Now, when you try to access the asdm, do you see any error message?
Also, what is the java version you are running on your machine?
Ashu
05-06-2010 12:05 PM
when trying https://192.168.1.1/admin
it just comes back with The connection has timed out the sever at 192.168.1.1 is taking too long to respond. my current java version is
1.6.0_17
05-06-2010 12:12 PM
Hi Jospeh,
Are you able to ping 192.168.1.1? What is the ip address of your machine? Can you give me the output of "sh run http"?
Ashu
05-06-2010 12:28 PM
Also make sure you have a key "crypto key generate rsa mod 1024".or else https to the ASA will not work.
PK
05-06-2010 12:28 PM
yes i can ping it. my IP is 192.168.1.2. here is the printout
ciscoasa# show run http
http server enable
05-06-2010 12:33 PM
You also need
http 192.168.1.2 255.255.255.255
PK
05-06-2010 12:35 PM
Hi Joseph,
You need to add:
http 192.168.1.0 255.255.255.0
So, if you are connected via inside, the command would be
http 192.168.1.0 255.255.255.0 inside
HTH
Ashu
05-06-2010 12:41 PM
i ran command " http 192.168.1.0 255.255.255.0 management " still with no success. i can still ping the box just cannot access via web browser
05-06-2010 12:47 PM
it works after running that command. thank you for your help.
04-15-2013 01:29 AM
Hello Sir,
I have new ASA 5520 from the box and i have configured already int g0/1 with ip 10.15.14.5 255.255.255.0 nameif inside kindly see details below the config
CiscoAsa# sh run http
http server enable
http 0.0.0.0 0.0.0.0 inside
http 10.15.14.0 255.255.255.0 inside
http 10.15.14.10 255.255.255.255 inside
CiscoAsa# sh run asdm
asdm image disk0:/asdm-621.bin
no asdm history enable
still i cant browse the ASDM page https://10.15.14.5/admin but i amable to ping the IP Address
having same issue i did all which was posted here....
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide