Application access user notes, Using application access on vista – Cisco ASA 5505 User Manual

Page 1657

Advertising
background image

74-71

Cisco ASA 5500 Series Configuration Guide using the CLI

Chapter 74 Configuring Clientless SSL VPN

Application Access User Notes

Detailed Steps

Assign—Highlight an SSO server and click this button to assign the selected server to one or more
VPN group policies or user policies.

Application Access User Notes

The following sections provide information about using application access:

Using Application Access on Vista

Closing Application Access to Prevent hosts File Errors

Recovering from hosts File Errors When Using Application Access

Using Application Access on Vista

Users of Microsoft Windows Vista who use smart tunnels or port forwarding must add the URL of the
ASA to the Trusted Site zone. To access the Trusted Site zone, they must start Internet Explorer and
choose the Tools > Internet Options > Security tab. Vista users can also disable Protected Mode to
facilitate smart tunnel access; however, we recommend against this method because it increases the
computer’s vulnerability to attack.

Closing Application Access to Prevent hosts File Errors

To prevent hosts file errors that can interfere with Application Access, close the Application Access
window properly when you finish using Application Access. To do so, click the close icon.

Command

Purpose

Step 1

port-forward [enable list_name | disable]

Example:

hostname(config-group-policy)# webvpn

hostname(config-group-webvpn)# port-forward enable

apps1

Enables port forwarding. You do not have to start
port forwarding manually if you entered
port-forward auto-start list_name from the
previous table.

list_name is the name of the port forwarding list
already present in the ASA webvpn configuration.
You cannot assign more than one port forwarding
list to a group policy or username.

Assigns the port forwarding list named apps1 to the
group policy.

Step 2

show running-config port-forward

Views the port forwarding list entries.

Step 3

(Optional)

no port-forward

Removes the port-forward command from the group
policy or username and reverts to the default.

Step 4

(Optional)

port-forward disable

Disables port forwarding.

Advertising
This manual is related to the following products:

ASA 5585-X, ASA 5555-X, ASA 5545-X, ASA 5525-X, ASA 5515-X, ASA 5512-X, ASA 5580, ASA 5550, ASA 5540, ASA 5520, ASA 5510, ASA 5500 Series

Popular Brands
Popular manuals