AboutPricingCommunityTeamsStart Free TrialLog in
Avatar of hachemp
hachemp
 asked on

Cisco ASA - Enable Cisco Secure Desktop or Cache Cleaner Per Profile, Not Globally

I'm running a Cisco ASA 5520 8.2(1) for secure VPN access.  We use both AnyConnect and WebVPN.  I am trying to enable either Cisco Secure Desktop or Cache Cleaner for a certain AnyConnect profile, while not applying it to the other profiles.  Is this possible?  Seems to me like it's just a checkbox on or off, and I can't find anything in the group policies to enable or disable for a given policy.  I'm using the ASDM for this (easier for me on things like this than CLI) so if this is possible please describe how to get to it in the ASDM.

Thanks
CiscoVPNHardware Firewalls
Avatar of undefined
Last Comment
hachemp
8/22/2022 - Mon
ASKER CERTIFIED SOLUTION
Jacob Kellemann
THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
Jacob Kellemann
Sorry, forgot about the ASDM part. I am not a big user of ASDM, but I can't find the ASDM equivalent to the the without-csd command.
hachemp
ASKER
Thanks for the response kellemann.  The only problem I see with this is that it seems to apply specifically to webVPN and then specifically to certain URLs.  I tried using the 'without-csd' command on one of my AnyConnect tunnel-groups and it didn't stop it from using CSD.  Unfortunately, according to the link you sent, 'the group-url command is required for the without-csd command to have an effect.'

Is there another way I should be using this?  I'm not averse to using CLI to do this, just need to know if what I need can be accomplished with this command, and if I'm using it correctly.  
Jacob Kellemann
Sorry, that's the only way to create differentiate CSD. See this FAQ:
https://supportforums.cisco.com/docs/DOC-1247#Q_Can_CSD_be_enabled_on_a_pergrouppolicy_post_authentication
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
hachemp
ASKER
Thanks a lot for the info.  It's unfortunate that they don't provide this yet but you answered my questions accurately.
Plans and Pricing
Resources
Product
Podcasts
Careers
Contact Us
Teams
Certified Expert Program
Credly Partnership
Udemy Partnership
Privacy Policy
Terms of Use

© 1996-2023 Experts Exchange, LLC. All rights reserved. Covered by US Patent