Cisco ASA5510 ASDM

cannon4a
cannon4a used Ask the Experts™
on
I cannot get my asdm to open I get the following error. I am not cisco expert but I can connect over serial, but I cant get the http server enable 444 command to work.

Error " Unable to launch device manager from IP:444"

Thank You
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®
Try this

http://www.stknetwork.com/index.php?option=com_content&view=article&id=76:cisco-asdm-error&catid=37:configuration-examples&Itemid=71

Cisco ASA ASDM - Troubleshooting "Unable to launch device manager from" and "Unconnected Socket Not Implemented" errors.

 



 

Checklist:

 

-The basics



Disable the Windows Firewall.
Clear the Java cache from Windows Control Panel - Java

Upgrade your Java version to JRE6u7.

If you get the error "Unconnected Socket Not Implemented", or the error "com.sun.deploy.net.FailedDownloadException: Can't load the object: https://X.X.X.X/admin/public/asdm.jnlp", please downgrade your Java JRE 6 from u10 to u7.

If you get the error java.io.IOException: Unable to tunnel through proxy. Proxy returns "HTTP/1.1 403 Forbidden, remove the proxy configuration from your browser.

Download the ASDM installer again from your asa (https://yourasaip) and run again the setup.



-Reload the appliance (may fix the "1 year uptime" ASDM java bug).


-Ping the device in order to check the connectivity

dos command:    ping 192.168.1.1
where 192.168.1.1 is your ASA inside network interface


-Verify that http server is running on the device

cli command:    http server enable
or issue "http server enable XXX" where XXX is a custom port number


-Verify that you can access the device via https

cli command:    http 192.168.1.0 255.255.255.0 inside
where 192.168.1.0 is your LAN network


-Reissue the local keys (SSL Certificate)

pix cli command: ca zeroize rsa
pix cli command: ca generate rsa key 1024
pix cli command: ca save all

asa cli command: crypto key zeroize
asa cli command: crypto key generate rsa general-keys



-Verify the ASDM startup-config pointer

cli command:    dir
find the line listing the asdm image filename "asdm-xxx.bin"

Cli command:    show run
find and compare the filename with the asdm load command "asdm image disk0:/asdm-xxx.bin"


-Try downloading a new ASDM copy from Cisco.

Upload the new file to the ASA flash memory

Remove the old pointer issuing the command
cli command:     no asdm image disk0:/asdm-xxx.bin

Add the new filename to the configuration
cli command:    asdm image disk0:/asdm-yyy.bin


If these steps aren't useful, locate a new ASA version image and upgrade or downgrade the firewall

Author

Commented:
every time I try http server enable i get the following error

Invalid input detected at '^' marker
Maybe this will help
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_qanda_item09186a00805b87d8.shtml

Q. How can I resolve this error message: threat-detection statistics host number-of-rate 0 threat-detection statistics host number-of-rate 0 ^ % Invalid input detected at '^' marker?



A. This error can occur while you use the threat detection feature in ASDM. Either use CLI to send the command or downgrade the ASDM in order to resolve this issue.

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial