Hello everybody,
I upgraded a ASA5508-X to rel. 9.16(4) and ASDM 7.20(1).
When I start the ASDM launcher von our managent PC (185.210.100.1)
I just get the AADM window with the message:
"Checking the launcher version compatibility ... done"
But the ASDM was not opened.
Before the upgrade the ASDM worked. And another ASA5508-X with
rel. 9.16(4) and ASDM 7.20(1) can be access from this PC without problems
and both have the same ASDM-related configuration (configuration attached).
I turned on debugging for http and got the following:
fw-mtk2# debug http 255
debug http enabled at level 255.
fw-mtk2# HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: processing ASDM request [/admin/login_banner] with cookie-based authentication (aware_ webvpn_conf.re2c:492)
HTTP: check admin session. Cookie index [-1][0]
HTTP: client certificate required = 0
HTTP: processing ASDM request [/admin/version.prop] with cookie-based authentication (aware_ webvpn_conf.re2c:492)
HTTP: check admin session. Cookie index [-1][0]
HTTP: client certificate required = 0
ewaURLHookVCARedirect
...addr: 192.168.178.100
ewaURLHookHTTPRedirect: url = /+webvpn+/index.html
HTTP: ASDM request detected [ASDM/] for [/+webvpn+/index.html]
webvpnhook: got '/+webvpn+' or '/+webvpn+/': Sending back "/+webvpn+/index.html"
HTTP 200 OK (185.210.100.1)HTTP 303 See Other (185.210.100.1)ewsStringSearch: no buffer
Close 0
ewaURLHookVCARedirect
...addr: 192.168.178.100
ewaURLHookHTTPRedirect: url = /+webvpn+/index.html
HTTP: ASDM request detected [ASDM/] for [/+webvpn+/index.html]
webvpnhook: got '/+webvpn+' or '/+webvpn+/': Sending back "/+webvpn+/index.html"
HTTP 200 OK (185.210.100.1)HTTP 303 See Other (185.210.100.1)ewsStringSearch: no buffer
Close 0
ewaURLHookVCARedirect
...addr: 192.168.178.100
ewaURLHookHTTPRedirect: url = /+webvpn+/index.html
HTTP: ASDM request detected [ASDM/] for [/+webvpn+/index.html]
webvpnhook: got '/+webvpn+' or '/+webvpn+/': Sending back "/+webvpn+/index.html"
HTTP 200 OK (185.210.100.1)ewsStringSearch: no buffer
Close 0
ewaURLHookVCARedirect
...addr: 192.168.178.100
ewaURLHookHTTPRedirect: url = /+webvpn+/index.html
HTTP: ASDM request detected [ASDM/] for [/+webvpn+/index.html]
webvpnhook: got '/+webvpn+' or '/+webvpn+/': Sending back "/+webvpn+/index.html"
HTTP 200 OK (185.210.100.1)HTTP: net_handle->standalone_client [1]
webvpn_admin_user_agent: buf: ASDM/ Java/1.8.0_333
HTTP: start admin session
HTTP: Standalone authentication OK
HTTP: Idle timeout: 20
HTTP: Session timeout: 0
HTTP: Authentication server group: LOCAL
HTTP: authorization LOCAL
HTTP: service-type attribute: 2
HTTP: privilege attribute: 15
HTTP: session 0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3
HTTP: create new admin session A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3
ewsStringSearch: no buffer
Close 0
HTTP: processing ASDM request [/admin/version.prop] with cookie-based authentication (aware_ webvpn_conf.re2c:492)
HTTP: check admin session. Cookie index [2][97797710]
HTTP: Admin session cookie [A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3]
HTTP: Admin session idle-timeout reset
HTTP: admin session verified = [1]
HTTP: username = [login4sws], privilege = [15]
HTTP MSG: GET /admin/version.prop HTTP/1.1
Cache-Control: no-cache
Pragma: no-cache
User-Agent: ASDM/ Java/1.8.0_333
Host: 88.217.184.96:8443
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Connection: keep-alive
Cookie: tg=0RGVmYXVsdEFETUlOR3JvdXA=; webvpnaac=1; webvpn=A0ED619@20480@E973@22C08284ACB8AA7 64161B71C8B886B040C15F0E3
▒▒▒
HTTP: processing GET URL '/admin/version.prop' from host 185.210.100.1
HTTP: user already authenticated, bypass authentication
HTTP: sending file: version.prop, length: 1640, response header options 0000001f
HTTP: processing ASDM request [/admin/pdm.sgz] with cookie-based authentication (aware_webvp n_conf.re2c:492)
HTTP: check admin session. Cookie index [2][97797710]
HTTP: Admin session cookie [A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3]
HTTP: Admin session idle-timeout reset
HTTP: admin session verified = [1]
HTTP: username = [login4sws], privilege = [15]
HTTP MSG: GET /admin/pdm.sgz HTTP/1.1
Cache-Control: no-cache
Pragma: no-cache
User-Agent: ASDM/ Java/1.8.0_333
Host: 88.217.184.96:8443
Accept: text/html, image/gif, image/jpeg, *; q=.2, */*; q=.2
Connection: keep-alive
Cookie: tg=0RGVmYXVsdEFETUlOR3JvdXA=; webvpnaac=1; webvpn=A0ED619@20480@E973@22C08284ACB8AA7 64161B71C8B886B040C15F0E3
▒▒▒
HTTP: processing GET URL '/admin/pdm.sgz' from host 185.210.100.1
HTTP: user already authenticated, bypass authentication
HTTP: sending file: pdm.sgz, length: 38005961, response header options 0000001f
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Session A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3 (login4sws) exprires in 1170 sec
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Session A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3 (login4sws) exprires in 1140 sec
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Session A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3 (login4sws) exprires in 1110 sec
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Session A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3 (login4sws) exprires in 1080 sec
HTTP: Periodic admin session check (idle-timeout = 1200, session-timeout = 0)
HTTP: Session A0ED619@20480@E973@22C08284ACB8AA764161B71C8B886B040C15F0E3 (login4sws) exprires in 1050 sec
Do you have an idea why the ASDM does not work at this ASA?
Every hint is welcome.
Thanks a lot!
Bye
R.
