cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
227872
Views
25
Helpful
4
Comments
Jagadeesh Tammera
Cisco Employee
Cisco Employee

 

 

Introduction

Scenario 1:

This document discuuss the minimum configuration required to access the Cisco ASA through ASDM.

 

Scenario 2:

User have 4 number of ASA5505 Firewall 

The Problem faced is that  2 of them working fine but when he goes to rowser and types "https://192.168.1.1" and nothing happens but the other two firewall are working fine once user hit Enter its go to the ASDM Page 

 He has reseted the Other two firewalls to factory default and he erased the Flash and reload them again nothing happens. User is using asa913-k8.bin  for ASDM asdm-714.bin. Need help regarding this issue

 

Configurations

 

Complete the below steps.

 

1. Configure the management interface

 

conf t

int e 0/2

ip address 192.168.100.2 255.255.255.0

nameif manage

security-level 80

exit

exit

 

2. Configure the username and privilege

 

username Test password Test@Cisco privilege 15

 

3. Configure the Cisco ASA to allow http connections

 

http server enable

http 192.168.100.0 255.255.255.0 manage

 

Now, launch the ASDM by typing "https://192.168.100.2" in the web browser of any PC which is in 192.168.100.0 network.

You should be able to access the ASA using the ASDM from that PC.

 

Scenario 2:

User may be lacking the free (but necessary for ASDM) 3DES license.

Please check:
show ver | i 3DES

If it is not active, you can go to the Cisco licensing portal ("Get New > IPS, Crypto or Other Licenses") and obtain a free license for that feature.

Try adding the following command and then test:

ssl encryption rc4-sha1 aes128-sha1 aes256-sha1 3des-sha1

What version of java are you running on your PC?  

  • If you do not have the latest version, please update java and then try again.  If you are running the newest version try downgrading java and then try again.
  • If that doesn't work enable logging and try to connect to the ASDM and then check the logs to see if there is anything prohibiting access.
  • If none of those work, log into the CLI and issue the command debug http then try to connect and see if there is any output in the debug.

 

Comments
Bratin Saha
Level 1
Level 1

The configuration seems to be incomplete - there should be "asdm image flash:/asdm.bin", where, asdm.bin would be the asdm package in flash. Please refer the cisco.com website for compatible packages with the ASA software version.

Useful commands to verify the configuration:

show run asdm

show run http

Use https://192.168.100.2/admin to connect. Java is required to run the ASDM.

thakkardixit
Level 1
Level 1

Hi, I am extremely new to networking with not much experience. We have a Cisco ASA 5510 Firewall and would like to use it for following purpose:

1. Use it like a router with internet connection from Optus coming in.
2. Link it with our existing network, so any PC connected to the ASA can get internet connection plus the network devices.
3. Setup VPN, so people can connect remotely through this firewall.

Can I achieve all of the above? If yes, how? Any help would be greatly appreciated. Thanks.

DJ

stanly426
Level 1
Level 1

good article,but if the asa is in the different subnet from the host of u, just config =>route management x.x.x.x mask(ur host) gateway management

 

EddyFonseca3815
Level 1
Level 1

hello all

I have an older ASA5505 FW

I have asa913-k8.bin installed and working but I seem to have deleted the ASDM for this version of code.  I want to locate it and see if I can get my ASDM to work again.  Note the older file was corrupt so I had to delete it.  If you can tell me which version of ASDM I can get to work with this ASA bin file.  

Also I would like to update the ASA to a supported version with the ASDM I would love to get that information. per cisco download there are interim install versions and I would assume they are in stages if you have that information I would update this FW. 

The data is the size of the disk0:

Directory of disk0:/

81 -rwx 5121 00:39:05 Jan 01 2006 7_2_4_0_startup_cfg.sav
89 -rwx 1318 00:39:27 Jan 01 2006 upgrade_startup_errors_200601010039.log
17 drwx 4096 05:57:36 Jul 05 2008 crypto_archive
18 drwx 4096 00:39:27 Jan 01 2006 coredumpinfo
10 drwx 4096 12:53:50 May 20 2009 log
85 -rwx 26984448 03:34:22 Nov 30 2013 asa913-k8.bin

127111168 bytes total (99590144 bytes free)

 

fwtest# show memory
Free memory: 35913360 bytes (13%)
Used memory: 232522096 bytes (87%)
------------- ------------------
Total memory: 268435456 bytes (100%)

 

thank you

Eddy

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: