cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1595
Views
0
Helpful
7
Replies

Clientless SSL - Forward usrname/pwd to 2008

snooter
Beginner
Beginner

Currently using the rdp plugin setup as bookmarks and they all point to windows 2003 terminal servers.  Using the following strings in the bookmarks, our users usernames/passwords forward to the terminal servers just fine and they don't have to enter any info after signing into the ssl/vpn front page on the asa.

rdp://10.10.1.91/?csco_sso=1&RedirectDrives=true&RedirectPrinters=true

Again, that works fine for 2003 servers..

However, we're rolling our windows 2008 r2 remote desktop servers now.  Using the same string, the printers and drives hook up just fine, however the users are prompted for their username or password, so something about 2008 doesn't like the "csco_sso=1" area there.  Anyone know if there's a new command to use for 2008 so the sso portion works?

7 Replies 7

Todd Pula
Rising star
Rising star

Please provide the version of ASA code and RDP Java plug-in that you are testing with.  Thank you.

ASA is running 8.2.2 and rdp-plugin.090915

I just tested this out and was seeing a modulus error when testing against my Windows 2008 server with the RDP plug-in.  I then installed the RDP2 plug-in and modified my bookmkark accordingly and am now able to access the server.  Please give this other plug-in a try.  You can download it from the link below.

http://tools.cisco.com/support/downloads/go/ImageList.x?relVer=1.1.1&mdfid=280582808&sftType=Remote+Access+Plugins+for+Adaptive+Security+Appliance+%28ASA%29&optPlat=&nodecount=2&edesignator=null&modelName=Cisco+ASA+5505+Adaptive+Security+Appliance&tr...

Did you get your criedentials to forward through to the rdp server or did you have to enter your user/pwd again?  If the forward worked for you, what did you use in the bookmark string?

I only had to enter my credentials for the initial WebVPN portal authentication.  I did not have to enter my credentials again for the RDP session.  My bookmark is as follows:

rdp2://1.1.1.1/?DesiredColor=4&DesiredHRes=1024&DesiredVRes=768&csco_sso=1

Strange, using your above url it won't pass my credentials along.  It connects, but then displays invalid username or password, I have to hit ok and  then it shows me I'm the user "LocalServer\MyUsername" and is asking for the password.


When I sign into our webvpn portal, it authenticates to a 2008 R2 domain controller....if it matters.  For some reason it's not passing the domain\username properly for me..

rdp2://Server_IP/?csco_sso=1

Did you ever get it work? I'm facing the same problem.

When I login (WebVPN) with "AD-domain\username" the csco_sso=1 forward the right string but I wolud like to put

the AD-domain in the bookmark...

Here my bookmark including AD-domain

https://supportforums.cisco.com/thread/2094234

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers