Configuring web e-mail: ms outlook web app, Configuring portal access rules – Cisco ASA 5505 User Manual

Page 1666

Advertising
background image

74-80

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 74 Configuring Clientless SSL VPN

Configuring Portal Access Rules

1 With the Eudora e-mail client, SMTPS works only on port 465, even though the

default port for SMTPS connections is 988.

Configuring Web E-mail: MS Outlook Web App

The ASAsupports Microsoft Outlook Web App to Exchange Server 2010 and Microsoft Outlook Web
Access to Exchange Server 2007, 2003, and 2000. OWA requires that users perform the following steps:

Detailed Steps

Step 1

Enter the URL of the e-mail service into the address field or click an associated bookmark in the
clientless SSL VPN session.

Step 2

When prompted, enter the e-mail server username in the format domain\username.

Step 3

Enter the e-mail password.

Configuring Portal Access Rules

This enhancement allows customers to configure a global clientless SSL VPN access policy to permit or
deny clientless SSL VPN sessions based on the data present in the HTTP header. If the ASA denies a
clientless SSL VPN session, it returns an error code to the endpoint immediately.

The ASA evaluates this access policy before the endpoint authenticates to the ASA. As a result, in the
case of a denial, fewer ASA processing resources are consumed by additional connection attempts from
the endpoint.

Prerequisites

Log on to the ASA and enter global configuration mode. In global configuration mode, the ASA displays
this prompt:

hostname(config)#

Step 9

name-separator

Defines the separator between the e-mail and VPN
usernames and passwords. The default is colon (:).

Step 10

outstanding

Configures the maximum number of outstanding
non-authenticated sessions. The default is 20.

Step 11

port

Sets the port the e-mail proxy listens to. The default
is as follows:

IMAP4S:993

POP3S: 995

SMTPS: 988

1

Step 12

server

Specifies the default e-mail server.

Step 13

server-separator

Defines the separator between the e-mail and server
names. The default is @.

Command

Purpose

Advertising