Filter
Top Products
30-65
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 30 Managing Remote Access VPNs on ASA and PIX 7.0+ Devices
Customizing Clientless SSL VPN Portals
• Backup Server—When selected, the client also acts as the backup server. In this case, you must
also specify the interfaces to be used for this purpose.
Configuring an ASA Device as a Shared License Server
This procedures describe how to configure an ASA device as a shared license server.
Tip You must ensure that the SSL VPN Shared License Server activation key is present on the device.
Step 1 Do one of the following:
• (Device view) With an ASA device selected, select Remote Access VPN > SSL VPN > Shared
License from the Policy selector.
• (Policy view) Select Remote Access VPN > SSL VPN >Shared License (ASA 8.2+) from the
Policy Type selector. Select an existing policy or create a new one.
The SSL VPN Shared License page appears (see Configuring SSL VPN Shared Licenses (ASA 8.2+),
page 30-62).
Step 2 Select Shared License Server as the role of the device.
Step 3 In the Shared Secret field, enter and confirm a case-sensitive string (4-128 characters) used for
communicating with the shared license server.
Step 4 In the License Server Port field, enter the number of the TCP port on which the license server
communicates.
Step 5 In the Refresh Interval field, enter a value between 10-300 seconds to be used as the refresh interval.
Default is 30 seconds.
Step 6 In the Interfaces field, enter or select the interfaces to be used for communicating with clients.
Step 7 (Optional.) Select Configure Backup shared SSL VPN License Server to configure a backup server
for the shared license server, then configure the following:
• Backup License Server—The IP address, or network/host object that contains the address, of the
server to act as a backup license server if the current one is unavailable.
• Backup Server Serial Number—The serial number of the backup license server.
• HA Peer Serial Number—(Optional) The serial number of the backup server of a failover pair.
Customizing Clientless SSL VPN Portals
You can customize the web site and its contents that you use for the portal page for a browser-based
clientless SSL VPN. ASA devices allow much more customization than IOS devices. You can create
several policy objects that define the look of the web pages the user sees when logging into or out of the
VPN and the home page for the portal, as well as the bookmarks and smart tunnels available to the user.
This section contains the following topics:
• Configuring ASA Portal Appearance Using SSL VPN Customization Objects, page 30-66