11-21-2014 02:16 AM - edited 03-11-2019 10:07 PM
Hello everyone,
I want to know the step by step process of accessing and managing asa 5585 via ASDM. Cisco documentation is not helping me.
Solved! Go to Solution.
11-21-2014 04:36 AM
Hi Shoaib,
On the Cisco ASA 5585 you need to configure the following:
This steps are very simple:
1. under config t enable http services:
ASA(Config)# http server enable.
2. We now just need to tell the cisco device from what side and ip address range to accept asdm requests.
ASA(Config)# http <192.168.1.0 255.255.255.0> <interface name>
this command will enable the asdm from the inside network for the network specified.
3. Make sure all your config is running properly.
ASA(Config)# show running http
http server enabled
http 192.168.1.0 255.255.255.0 inside
4. Please check the ASDM image on the ASA.
show run asdm
If you do not have an ASDM image on the ASA, then please add a one by using tftp server.
Enter the following command:
copy tftp://<SERVER>[/path]/filename {flash:/ | disk0:/ |disk1:/ } [path/] filename
copy tftp://x.x.x.x/ asdm-x.bin disk0:/ asdm-x.bin
2. ASA will confirm the server and filename, review each and press enter:
Address or name of remote host [x.x.x.x]? IP of your TFTP server
Source filename [asdm-x.bin]?
Destination filename [asdm-x.bin]?
3. If the ASA can communicate with TFTP server, you should see a bunch of !!!!!!! filling
your screen. Monitor this process, if you do not have enough space in the location you’re
moving the file to, you will receive an error during the write process.
Hope it helps.
11-21-2014 04:49 AM
Hi,
try this:-
show disk | in asdm
and you would be able to see the ASDM Binary file if available.
Otherwise you would have to download it from Cisco.com
You can follow this Path:-
Adaptive Security Appliance (ASA) Device Manager-7.3.1.101 |
11-21-2014 04:20 AM
Hi,
To use the ASDM for Managing the ASDM , these are some of the Steps that i can outline for you:-
1) Copy the ASDM Binary image on the ASA Disk.
2) Set the image:- asdm image disk0:/<name of the image>
3) Enable HTTP access for the subnet/IP from which you want to manage the ASA
http <IP Address> <Mask> <interface name>
http server enable
4) Access the ASDM using the browser and then you can also install the ASDM launcher for quick access.
https://<ASA Interface IP>
After that , if you want all the features and steps that can help you to configure the ASA device , Refer to this:-
http://www.cisco.com/c/en/us/support/security/asa-5500-series-next-generation-firewalls/products-installation-and-configuration-guides-list.html
Note:- Please go for the latest version available of ASDM available as it will fix some of the common JAVA compatibility issues.
Thanks and Regards,
Vibhor Amrodia
11-21-2014 04:23 AM
Thanks Vibhor for quick response.
How do I check if asdm image is present on my asa. If not present what steps I have to take then.
11-21-2014 04:49 AM
Hi,
try this:-
show disk | in asdm
and you would be able to see the ASDM Binary file if available.
Otherwise you would have to download it from Cisco.com
You can follow this Path:-
Adaptive Security Appliance (ASA) Device Manager-7.3.1.101 |
11-21-2014 05:24 AM
Thanks Vibhor and aditya for valuable answers.
11-21-2014 04:36 AM
Hi Shoaib,
On the Cisco ASA 5585 you need to configure the following:
This steps are very simple:
1. under config t enable http services:
ASA(Config)# http server enable.
2. We now just need to tell the cisco device from what side and ip address range to accept asdm requests.
ASA(Config)# http <192.168.1.0 255.255.255.0> <interface name>
this command will enable the asdm from the inside network for the network specified.
3. Make sure all your config is running properly.
ASA(Config)# show running http
http server enabled
http 192.168.1.0 255.255.255.0 inside
4. Please check the ASDM image on the ASA.
show run asdm
If you do not have an ASDM image on the ASA, then please add a one by using tftp server.
Enter the following command:
copy tftp://<SERVER>[/path]/filename {flash:/ | disk0:/ |disk1:/ } [path/] filename
copy tftp://x.x.x.x/ asdm-x.bin disk0:/ asdm-x.bin
2. ASA will confirm the server and filename, review each and press enter:
Address or name of remote host [x.x.x.x]? IP of your TFTP server
Source filename [asdm-x.bin]?
Destination filename [asdm-x.bin]?
3. If the ASA can communicate with TFTP server, you should see a bunch of !!!!!!! filling
your screen. Monitor this process, if you do not have enough space in the location you’re
moving the file to, you will receive an error during the write process.
Hope it helps.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide