12-15-2022 02:23 AM
Hello!
I'm trying to resolve problem with migration Clientless VPN RA from ASA to Firepower Managment Center (we have some devices like Firepower 1120).
On the ASA we used some kind configuration like that :
We've been adding a web portal to acces for users. And now I trying to migrate this configuration from ASA to FMC, but I coudn't find any options with VPN Portal.
Can someone more experienced tell me is there any possibility to migrate this option ? If not, what can you propose for users with functionality : VPN RA via web portal (AAA via RADIUS without cert) --> some proxy to one internal site at the company.
Thank you for replies!
Solved! Go to Solution.
12-15-2022 02:25 AM
@kzegadlo Clientless VPN is not supported on FTD/FMC, never has been, nor will it. The WebVPN portal on FTD is only for downloading the AnyConnect client.
In fact clientless VPN has been depreciated from newer ASA software.
12-15-2022 02:25 AM
@kzegadlo Clientless VPN is not supported on FTD/FMC, never has been, nor will it. The WebVPN portal on FTD is only for downloading the AnyConnect client.
In fact clientless VPN has been depreciated from newer ASA software.
12-15-2022 03:15 AM
Thank you for reply!
Can you propose some solution/option to handle with this case? Only application Cisco Any Connect with profile (+ AAA / Cert etc)?
Present solution had this advantage that remote user doesn't need a certificate or application to get remote access to one resource.
12-15-2022 03:25 AM
@kzegadlo if you have the FPR1120 hardware already, then you can only use an AnyConnect client to connect to the VPN.
It supports AAA and certificate authentication. You can even integrate with Duo for Two Factor authentication.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide