Filter
Top Products
33-11
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 33 Configuring Policy Objects for Remote Access VPNs
ASA Group Policies Dialog Box
Navigation Path
Select SSL VPN > Clientless from the table of contents in the ASA Group Policies Dialog Box,
page 33-1.
Field Reference
Table 33-7 ASA Group Policies SSL VPN Clientless Settings
Element Description
Portal Page Websites The name of the SSL VPN bookmarks policy object that includes the
website URLs to display on the portal page. These websites help users
access desired resources. Enter the name of the object or click Select to
select it from a list or to create a new object.
Allow Users to Enter
Websites
Whether to allow the remote user to enter website URLs directly into
the browser. If you do not select this option, the user can access only
those URLs included on the portal.
Enable File Server Browsing Whether to allow the remote user to browse for file shares on the CIFS
file servers.
Enable File Server Entry Whether to allow the remote user to locate file shares on the CIFS file
servers by entering the names of the file shares.
Enable Hidden Shares Whether to make hidden CIFS shares visible, and thus accessible, to
users.
HTTP Proxy The type of access you want to allow to the external HTTP proxy server
to which the security appliance forwards HTTP connections. You can
enable access, disable access, or select Auto Start, which starts the
proxy automatically upon user login.
Filter ACL The name of the web type access control list policy object to use to
restrict user access to the SSL VPN. Enter the name of the object or
click Select to select it from a list or to create a new object.
Enable ActiveX Relay Whether to enable ActiveX relay, which allows users to start ActiveX
programs from the portal page. This allows users to start Microsoft
Office applications from the web browser and upload and download
Office documents.
UNIX Authentication Group
ID
The UNIX authentication group ID.
UNIX Authentication User
ID
The UNIX authentication user ID.
Smart Tunnel The name of the smart tunnel list policy object assigned to this group.
Click Select to select it from a list or to create a new object.
A smart tunnel is a connection between a Winsock 2, TCP-based
application and a private site. The connection uses a clientless
(browser-based) SSL VPN session with the security appliance as the
pathway, and the security appliance as a proxy server. Thus, smart
tunnels do not require users to have administrator privileges. For more
information, see Configuring SSL VPN Smart Tunnels for ASA
Devices, page 30-73.