This document describes an issue where WebVPN users were getting "Java" related error.
User facing a problem with his Cisco ASA 5510 Clientless SSL Webvpn. After Oracle updates its Java Version, the JAVA Webportal are not working completely . His clientless SSL Web Portal is running on a Cisco ASA 5510 with Version 9.1.3. On this portal user has provided the JAVA RDP Plugin and the JAVA Citrix Plugin. All Java Plugins are working with Java 7 Update 25. But with the newest Version Java 7 Update 45 it is not working.
Error is Shown below: "SecurityException"
com.sun.deploy.net.JARSigningException: Unsignierter Eintrag gefunden in Ressource:
Total number of users affected = 200
Scenario (Update to v7.45)
ASA WebVPN Java Plugins is failing to load after upgrading to Java 7 Update 45
with the following General Exception error - 'com.sun.deploy.net.JARSigningException: Found unsigned entry in resource: https:///+CSCO+xxxxxxxxxxxxxxxxxxxxxxx++/vnc/VncViewer.jar'
Windows or Mac OSX machines using Java 7 Update 45.
JRE build 126.96.36.199 and 65
ASA WebVPN Java Plugins fail after upgrade to Java 7 Update 45 because of below mentioned bug: CSCuj88114
User need to disable the option "Keep temporary files on my computer" on the Java Control:
Panel -> General -> Settings
This works for both Mac OSX and Windows.
Downgrade Java to version 7 Update 40 or below.
New Java platform 7.5
Step 1:The solution is to modify the manifest (MANIFEST.MF) of the Jar file and set the attribute "Permissions: all-permissions"
Step 2:You have to install java JDK for having all tools. Example : For the RDP plugin: Unzip the rdp.12.21.2013.jar (last plugin from Cisco) file to c:\rdp
Step 3: Create your own manifest file. Copy the existant MANIFEST.MF and add "Permissions: all-permissions". Save the file to c:\mymanifest.mf
Step 4: In terminal mode, go into to c:\rdp and type
For Example Citrix (do-it-yourself) client plugin for ASA. ica-plugin.04.23.2012.zip (Missing Attribute is inside) Due to licensing restrictions, the administrator should manually import the Citrix jar files from citrix website into the plugin.
The steps are explained in the ASA webvpn config guide mentioned below:
Not sure if there is a solution out there yet. We recently purchased 2110 for VPN S2S and RA. We don't have ISE as it is out of our budget to house this. We are trying to see how we can control the RA computers that access our VPN. Has anyone found a work...
I am looking for a way to allow a custom user role to only have access to Blacklist Emails. Is this possible without allowing full access to Mail Policies and Content Filters.For example we have a Mail Policy that blacklists emails based on sender. W...
Guys, help, I have two ISE in operation with version 2.3 in a SNS3415 and I have a new SNS-3655 and I need migrate the ISE from 2.3 to 2.4 patch 5 in a this new nodes. Whats it's the procedure for this? I think export the certificate, the show r...
I have a Site-to-site tunnel built between Virginia (VA) and California (CA). He has a Juniper Firewall, and I have a FirePower running ASA. I define interesting traffic as VA-to-CA for all IP (one direction). Because of the Junipe...