Want to win a PS4? Go Premium and enter to win our High-Tech Treats giveaway. Enter to Win

x
?
Solved

What does "Shutdown portal login page" do

Posted on 2013-07-02
3
Medium Priority
?
2,715 Views
Last Modified: 2013-07-02
Hi,

Please could someone explain to me what the following option does on a Cisco ASA:
"Shutdown portal login page"

You can enable this via the ASDM
Configuration > Remote Access VPN > Network (Client) Access > Anyconnect Connection Profiles > Login Page Settings
0
Comment
Question by:Sc0t
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 15

Assisted Solution

by:Raj-GT
Raj-GT earned 2000 total points
ID: 39292783
This will disable the SSL VPN Logon page by removing fields to enter username and passwords in effect disabling that anyconnect profile.
0
 

Author Comment

by:Sc0t
ID: 39292828
Hi Raj-GT,

Thank you for your reply.

Can you explain further if I want to create an Anyconnect VPN profile and want to install/configure the software manually on a host machine, if I disable the VPN login page will this also disable that VPN connection?

Reason I ask is we would prefer to install the software manually rather than having a user go to a webpage and have to download/install the Anyconnect software. We would also like it if the webportal page was disabled so that people on the Internet would not be able to try/guess usernames and passwords potentially letting them download and install the Anyconnect software with our profile.
0
 
LVL 15

Accepted Solution

by:
Raj-GT earned 2000 total points
ID: 39293217
Correct. You cannot disable the portal page and have AnyConnect VPN working.

You can stop the auto installing of the SSL VPN client by not uploading the client pkg files to the ASA in the first place. This way only the clients with the software per-installed will work be able to connect to your VPN. (There is nothing stopping the user from installing the Cisco VPN client from other sources and connect to your VPN though.)

Brute force attacks are a problem with all SSL VPN solutions. You can use certificates or OTP tokens (I have used RSA and SafeWord with Cisco) to prevent this. Check the links below for more details on this.

http://www.cisco.com/en/US/docs/security/asa/asa80/asdm60/ssl_vpn_deployment_guide/deploy.html

http://www.cisco.com/en/US/docs/security/asa/asa91/asdm71/vpn/vpn_asdm_setup.html#wp1119491

Thanks.
0

Featured Post

Independent Software Vendors: We Want Your Opinion

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you connect to your workplace's VPN, you may not notice that you are using your workplace's servers to serve up webpages.  This might be undesirable since the workplace can log all the places you've been.  It also might be very slow to load pag…
OpenVPN is a great open source VPN server that is capable of providing quick and easy VPN access to your network on the cheap.  By default the software is configured to allow open access to your network.  But what if you want to restrict users to on…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses

604 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question