• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 774
  • Last Modified:

SSL VPN :: After connection to SSL VPN, we are not able to access Microsoft Exchange Server thru Outlook and RDP not working.

Cisco SSL VPN :: Not able to Connect to Exchange Server over Cisco ASA SSL VPN and not able to take RDP of any server.
However, Cisco SSL VPN working fine as I can open http and https intranet link while connecting to the VPN.
I have installed the Remote Desktop Plug in from Cisco today for an SSL VPN setup but still no luck.
Any comments as soon as possible will be highly appreciated.
Urmindra Shukla
Urmindra Shukla
  • 4
1 Solution
Urmindra ShuklaAuthor Commented:
One more doubt I have in my mind regarding the SSL VPN configuration:
Why there is a need to configure Certificate in ASA firewall ? what would happen if we don't configure certificate on firewall? will SSL VPN work in that case ? And in which case we do need to install SSL VPN Client Package in the firewall ? I my current configuration I didn't install any software however SSL VPN working perfectly fine and following are the configurations for my certificate in ASA Firewall :

corpasa(config)#crypto key generate rsa label sslvpnkey
corpasa(config)#crypto ca trustpoint localtrust
corpasa(config-ca-trustpoint)#enrollment self
corpasa(config-ca-trustpoint)#fqdn sslvpn.company.com
corpasa(config-ca-trustpoint)#subject-name CN=sslvpn.company.com
corpasa(config-ca-trustpoint)#keypair sslvpnkey
corpasa(config-ca-trustpoint)#crypto ca enroll localtrust noconfirm
corpasa(config)# ssl trust-point localtrust outside

Thanks a lot in advance to answers my queries!
Urmindra ShuklaAuthor Commented:
Is that correct zone ? or can anyone switch to me into the right zone(s) so that I would need some comments on it.
I need to deploy the same configuration as soon as possible!

Tanuj Garg
you don't need a 3rd party cert although it is more secure. The self-signed cert of the asa is fine.  Have you deployed smart tunnel in the ssl vpn? It is more reliable than doing via the java applet publishing using port forwarding. Exchange works better on it.

you don't need to use the client software at all. Some diagnostic logs/debugging would help during a failed exchange or rdp session.  Please post config

Urmindra ShuklaAuthor Commented:
Urmindra ShuklaAuthor Commented:
It still did not resolve my problem completely.

Featured Post

 The Evil-ution of Network Security Threats

What are the hacks that forever changed the security industry? To answer that question, we created an exciting new eBook that takes you on a trip through hacking history. It explores the top hacks from the 80s to 2010s, why they mattered, and how the security industry responded.

  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now