07-20-2017 11:56 AM
All,
A Few questions around ANyCOnnect 4.x.
1. Do we currently support accessing SharePoint via AnyConnet Clientless SSL VPN through the ASA?
2. I know that we support Outlook Web Access, the question is can we limit what a user is able to do once they open the outlook web application via the VPN profile?
Thanks for the assistance.
--
Grace and Peace,
Robert E Roulhac Jr
Solved! Go to Solution.
07-20-2017 06:22 PM
Hello,
AnyConnect and Clientless (WebVPN) are two very different solutions.
AnyConnect is a full tunnel so SharePoint will of course work just as if you were local on the network.
We do have SharePoint 2013 support for Clientless (Webvpn) it is defined as a bookmark on the portal the user access with only their browser. CLI Book 3: Cisco ASA Series VPN CLI Configuration Guide, 9.7 - Clientless SSL VPN Overview [Cisco ASA 5500-X Series F…
Clientless SSL VPN SharePoint 2013 Support (last updated in ASA 9.5.1 )
Added support and a predefined application template for this new SharePoint version.
We modified the following screen: Configuration > Remote Access VPN > Clientless SSL VPN Access > Portal > Bookmarks > Add Bookmark List > Select Bookmark Type > Predefined application templates
Cisco ASA New Features by Release - Cisco
Clientless SSL VPN provides secure and easy access to a broad range of web resources and both web-enabled and legacy applications from almost any computer that can reach Hypertext Transfer Protocol Internet (HTTP) sites. This includes:
A list of supported software can be found in Supported VPN Platforms, Cisco ASA 5500 Series.
Configure Clientless SSL VPN (WebVPN) on the ASA - Cisco
In regards to Question 2 . What are you tryint to restrict ?
You could use a webacl to restrict access ie, launch another page
Webtype ACLs are used for filtering clientless SSL VPN traffic, constraining user access to specific networks, subnets, hosts, and Web servers. If you do not define a filter, all connections are allowed. A webtype ACL is represented as a named container of ACEs. To create a new ACL, you must first create the container. Then, you can add ACEs, edit existing ACEs, and reorder the ACEs using the Web ACL table. The table appears as the ACL Manager when you configure webtype ACLs while configuring the policies that use them, in which case the procedures are the same except for how you get to the window.
The webtype ACL can include a mix of IPv4 and IPv6 addresses in addition to URL specifications
Best regards,
Paul
AC TME
07-20-2017 06:22 PM
Hello,
AnyConnect and Clientless (WebVPN) are two very different solutions.
AnyConnect is a full tunnel so SharePoint will of course work just as if you were local on the network.
We do have SharePoint 2013 support for Clientless (Webvpn) it is defined as a bookmark on the portal the user access with only their browser. CLI Book 3: Cisco ASA Series VPN CLI Configuration Guide, 9.7 - Clientless SSL VPN Overview [Cisco ASA 5500-X Series F…
Clientless SSL VPN SharePoint 2013 Support (last updated in ASA 9.5.1 )
Added support and a predefined application template for this new SharePoint version.
We modified the following screen: Configuration > Remote Access VPN > Clientless SSL VPN Access > Portal > Bookmarks > Add Bookmark List > Select Bookmark Type > Predefined application templates
Cisco ASA New Features by Release - Cisco
Clientless SSL VPN provides secure and easy access to a broad range of web resources and both web-enabled and legacy applications from almost any computer that can reach Hypertext Transfer Protocol Internet (HTTP) sites. This includes:
A list of supported software can be found in Supported VPN Platforms, Cisco ASA 5500 Series.
Configure Clientless SSL VPN (WebVPN) on the ASA - Cisco
In regards to Question 2 . What are you tryint to restrict ?
You could use a webacl to restrict access ie, launch another page
Webtype ACLs are used for filtering clientless SSL VPN traffic, constraining user access to specific networks, subnets, hosts, and Web servers. If you do not define a filter, all connections are allowed. A webtype ACL is represented as a named container of ACEs. To create a new ACL, you must first create the container. Then, you can add ACEs, edit existing ACEs, and reorder the ACEs using the Web ACL table. The table appears as the ACL Manager when you configure webtype ACLs while configuring the policies that use them, in which case the procedures are the same except for how you get to the window.
The webtype ACL can include a mix of IPv4 and IPv6 addresses in addition to URL specifications
Best regards,
Paul
AC TME
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide