Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1096
Views
0
Helpful
4
Replies

Need to allow TLS_DH_anon_WITH_RC4_128_MD5 in ASA what is the command to do so

Hemakumar Sampath
Level 1
Level 1

‎11-07-2013 07:56 AM - edited ‎03-11-2019 08:01 PM

                   Hi

Recently we had issue in Microsoft Office communicator, users were not able to share their desktops however the ports are enabled. A microsoft has said that this Cipher suit is normally blocked in firewall and we have to enable it ( TLS_DH_anon_WITH_RC4_128_MD5 ).

Please provide the command to do so.

We are running ASA asa902-smp-k8.bin

Labels:
0 Helpful
4 Replies 4

jumora
Level 7
Level 7

‎11-07-2013 09:25 PM

If you are actually doing this from one interface to another you should see what the ASA is dropping and in that case enable logs at debugging level through ASDM and or CLI and filter our the IP address that is generating the traffic.

If you need assistance on this please let me know.

Value our effort and rate the assistance!
0 Helpful

jumora
Level 7
Level 7
In response to jumora

‎11-07-2013 09:31 PM

ASA 8.2: Configure Syslog using ASDM

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080b83d04.shtml

Value our effort and rate the assistance!
0 Helpful

cisco.met.co.uk
Level 1
Level 1

‎10-21-2014 06:24 AM

The ASA won't block any cypher suite unless its specifically configured to terminate the TLS/SSL session,.

At a guess its probably being directed to a server that does not support that cipher suite.

0 Helpful

pepiscop
Level 1
Level 1

‎05-08-2018 11:59 AM

Are yours users behind a proxy?

peter
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card