Solved

Cisco ASA 5515, cannot get in via ASDM or web browser

Posted on 2015-01-19
8
474 Views
Last Modified: 2015-01-19
i have an ASA 5515.  I used the CLI to reset to factory defaults.  I can ping it on the mgt IP of 192.168.1.1 but I cannot browse to it nor can i log in with ASDM.

I have added the cert to Java from my last load, before the reset, and my IE is configured properly, but I still can't get in.  

I added myself as a user with CLI and I see my UN in the sh run, but still can't hit it via IE or ASDM.

Did I miss something?

Thanks

Cliff
0
Comment
Question by:crp0499
8 Comments
 

Assisted Solution

by:shanehooton
shanehooton earned 125 total points
ID: 40558838
try the following commands. depending on your browser configuration ,the right encryption type for the https access may not be enabled on the ASA

no ssl encryption des-sha1
 ssl encryption rc4-sha1 aes128-sha1 aes256-sha1 3des-sha1
0
 

Author Comment

by:crp0499
ID: 40558892
done. no joy
0
 
LVL 2

Assisted Solution

by:phil435
phil435 earned 125 total points
ID: 40558940
What version of asdm and Java? I had a similar issue and had to load an older version of Java and reference asdm to the old version. This shouldn't be the issue with the cli though. Are you using ssh or telnet?
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 

Author Comment

by:crp0499
ID: 40558944
I'm using Putty to connect.  Thing is, this PC worked with this ASA before I reset to defaults and after I reset to defaults.  

When I got it, I was able to connect right up with ASDM.  So I poked around a little and then reset it to defaults.   I got in just fine using the same PC.

Now, I've reset again and using the same PC, I can't get in.
0
 
LVL 11

Assisted Solution

by:Miftaul
Miftaul earned 250 total points
ID: 40559014
It has something to do with the Java version. Please check the version.
0
 

Author Comment

by:crp0499
ID: 40559016
UGH!  Shoot me!  I had imported the cert from the ASA into Java, but FORGOT to import it to the local machine!

I exported it using IE and then imported it to trusted root store and I was good.
0
 
LVL 11

Accepted Solution

by:
Miftaul earned 250 total points
ID: 40559017
oops,

Good That its working.
0
 

Author Closing Comment

by:crp0499
ID: 40559020
Although no one provided the "correct" answer (I forgot to import the ASA cert into the local machine) everyone helping me as a sounding board did it for me and I did post my answer so I split the points.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

If you have an ASA5510 then this sort of thing would be better handled with a CSC Module, however on an ASA5505 thats not an option, and if you want to throw in a quick solution to stop your staff going to facebook during work time, then this is the…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

763 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question