Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
396
Views
0
Helpful
1
Replies

simple ssl question

network770
Level 1
Level 1

‎03-25-2011 11:34 AM

I am a 'newbie' to the world of ssl, we have 2 free ssl licenses with the asa's that we have and want to test it out

I am pretty sure that I need to upload this file to the firewall : anyconnect-dart-win-2.5.0217-k9.pkg

to allow for ssl users, is that right?

Also, we have 2 asa running in failover, if I upload the file to the firewall using ASDM, do I need to do it for both firewalls or the ASDM upload will take care of that?  i guess the same questions applies for IOS upgrades.

can the ssl connection use the same group policy as my ipsec rules?

Labels:
0 Helpful
1 Reply 1

Jennifer Halim
Cisco Employee
Cisco Employee

‎03-25-2011 03:04 PM

"anyconnect-dart-win-2.5.0217-k9.pkg" is the diagnostics package for anyconnect.

You might want to upload the following file instead: anyconnect-win-2.5.2019-k9.pkg

You will have to manually upload the file to both primary and secondary ASA because files are not auto synchronised between the 2 firewalls. Only running configuration gets automatically synchronised.

Yes, SSL connection can use the same group-policy. Just have to ensure that you enable "ssl" in the vpn-tunnel-protocol attribute.

Hope this helps.

0 Helpful
Customers Also Viewed These Support Documents