64-96
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 64 General VPN Setup
Mapping Certificates to IPsec or SSL VPN Connection Profiles
–
Authentication Mode—Lets you select the authentication mode, none, xauth, or hybrid, as
above.
–
Interface/Authentication Mode table—Shows the interface names and their associated
authentication modes that are selected.
–
Add—Adds an interface/authentication mode pair selection to the Interface/Authentication
Modes table.
–
Remove—Removes an interface/authentication mode pair selection from the
Interface/Authentication Modes table.
• Client VPN Software Update Table—Lists the client type, VPN Client revisions, and image URL
for each client VPN software package installed. For each client type, you can specify the acceptable
client software revisions and the URL or IP address from which to download software upgrades, if
necessary. The client update mechanism (described in detail under the Client Update dialog box)
uses this information to determine whether the software each VPN client is running is at an
appropriate revision level and, if appropriate, to provide a notification message and an update
mechanism to clients that are running outdated software.
–
Client Type—Identifies the VPN client type.
–
VPN Client Revisions—Specifies the acceptable revision level of the VPN client.
–
Image URL—Specifies the URL or IP address from which the correct VPN client software
image can be downloaded. For Windows-based VPN clients, the URL must be of the form http://
or https://. For ASA 5505 in client mode or VPN 3002 hardware clients, the URL must be of the
form tftp://.
Modes
The following table shows the modes in which this feature is available:
Clientless SSL VPN Access > Connection Profiles > Add/Edit > General > Basic
The Add or Edit pane, General, Basic dialog box lets you specify a name for the tunnel group that you
are adding, lets you select the group policy, and lets you configure password management.
On the Edit Tunnel Group dialog box, the General dialog box displays the name and type of the selected
tunnel group. All other functions are the same as for the Add Tunnel Group dialog box.
Fields
• Name—Specifies the name assigned to this tunnel group. For the Edit function, this field is
display-only.
• Type—Displays the type of tunnel group you are adding or editing. For Edit, this is a display-only
field whose contents depend on your selection in the Add dialog box.
• Group Policy—Lists the currently configured group policies. The default value is the default group
policy, DfltGrpPolicy.
• Strip the realm —Not available for Clientless SSL VPN.
Firewall Mode Security Context
Routed Transparent Single
Multiple
Context System
• — • ——
To Next Page
Loading...
Need help?
General
