Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
602
Views
0
Helpful
2
Replies

Java plug-ins on ASA WebVPN

AlexeyLobanov
Level 1
Level 1

‎08-10-2017 01:48 PM

We have ASA 5525-X version 9.6.2 now upgraded to  9.8.1 however since Java update our Java plug-ins no longer working as Java disabled RC5 algorithm. We use own Code Signer certificate with proper SHA256withRSA signatures and all Java applets are pre-signed with all embedded Java files as well.

However the  ASA is overwriting signature algorithm for all embedded jar files with old RC5withRSA algorithm. I'm aware of a fix to enable RC5 on workstations however many VPN users work from home computers or external contactors.

Any workarounds?

Labels:
0 Helpful
2 Replies 2

Mohammad Alhyari
Cisco Employee
Cisco Employee

‎08-13-2017 11:39 PM

Hi Alexy,

Can you please show me how do you check if the jar files are signed by the ASA?

what java plugin are you using?

Moh,

0 Helpful

AlexeyLobanov
Level 1
Level 1
In response to Mohammad Alhyari

‎08-14-2017 04:18 PM

Hi Mohammad,

I'm using  jarsigner -verify -verbose xxx.jar command to check a signed jar fire before I upload it to ASA and after I login to portal and download the same jar but from the webvpn portal. The ASA has a CA issued Code-Signer certificate which we use for many other purposes and it's not faulty.

I'm using rdp02.24.2014.jar and ssh.12.21.2013.jar both from Cisco downloads

0 Helpful
Customers Also Viewed These Support Documents