Buy or Renew
Buy or Renew
NOTICE: You can now engage in the community. Learn about the great new Cisco Umbrella content.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
666
Views
4
Helpful
2
Replies

Clientless SSL VPN Login Portal Issue

090002aaa
Level 1
Level 1

‎03-10-2015 04:11 PM - edited ‎02-21-2020 08:07 PM

Hi, Engineers


I am trying VPN through web, but I got some problems to access into an internal server. I consider it should be a compatibility issue because it works, no error is displayed and the resource is reached, though I dont see the login portal.

ASA 5510

Version 8.2(4)

 

In the Group Policy -> Bookmark List, I changed the url

Before:        http://   1.2.3.4

After:           http://   1.2.3.4:8443/share/page/

 

Even I got the same results.

 

I already checked logs but nothing is blocking the connection, No problems with IPSec VPN works seamlessly.

 

I really appreciate your help.

 

Regards.

Labels:
Preview file
631 KB
Preview file
559 KB
0 Helpful
2 Replies 2

David Johan Castro Fernandez
Level 3
Level 3

‎03-10-2015 09:27 PM

Hello,

 

If the website is unavailable or in this case, the website is missing several characters(charts, canvas, etc or some other objects), usually could be an issue with the rewrite engine.

 

Solution (workaround):

You may use smart tunnel for this website, so the rewrite engine will not override any content, and it will display the website as it should.

 

You can implement it as follow:

 

Add a Bookmark

Bookmark for the service and clicking the Enable Smart Tunnel option in the Add or Edit Bookmark dialog box.

 

For further information you can find it here:

http://www.cisco.com/c/en/us/td/docs/security/asa/asa83/configuration/guide/config/webvpn.html#wp1272236

 

Let me know how tit works out!

 

Please don't forget to rate and mark as correct the helpful Post!

 

David Castro,

 

Regards,

090002aaa
Level 1
Level 1
In response to David Johan Castro Fernandez

‎03-11-2015 03:45 PM

Thanks for answering David Castro.

 

I did what you said, but when I selected "Enable Smart Tunnel" webpage loads as put in your browser the internal ip add  instead of using rewrite engine. Some JRE asked you to allow the Cisco App to continue. When it tries to access the internal server it looks like you get out the clientless ssl vpn. 

 

Before

https://9.8.7.6/+CSCO+051516416

No login portal, missing objects

 

After

http:// 1.2.3.4

No reach the internal resource

 

What else can you recommend me to do?

 

Regards.

 

 

 

0 Helpful
Customers Also Viewed These Support Documents