Solved

SSL RA VPN

Posted on 2016-09-28
7
125 Views
Last Modified: 2016-11-21
I have configured SSL vpn on a cisco 1841. When I try to open a browser and download the anyconnect from  the RTE I am unable to get to it. when I type the IP address of the RTE into the browser, it asks for a username and password but, the local username and password i created for the VPN is not working, when I use different browser, it says, the prompt is asking for a level 15 account. Tis tells me that all it's doing it's accessing gui HTTP of the router and not VPN. I have posted my configs below. Can anyone help?

aaa authentication login VPN_LOGIN local
ip local pool VPN_POOL 172.26.34.105 172.26.34.108
webvpn gateway GATEWAY
 ip address x.x.x.x port 443
 http-redirect port 80
 ssl trustpoint TP-self-signed-1890443829
 no inservice
 !
webvpn context VPN_CONTEXT
 ssl authenticate verify all
 !
 !
 policy group VPN_POLICY
   functions svc-enabled
   banner "Login Successful"
   filter tunnel 105
   svc address-pool "VPN_POOL"
   svc default-domain "WOLF"
   svc keep-client-installed
   svc dpd-interval gateway 30
   svc homepage "www.anyconnectvpn.com"
   svc rekey method new-tunnel
   svc dns-server primary 8.8.8.8
 aaa authentication list VPN_LOGIN
 no inservice

Open in new window

0
Comment
Question by:Shark Attack
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
7 Comments
 
LVL 37

Expert Comment

by:ArneLovius
ID: 41822572
have you uploaded an AnyConnect client to the router ?
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 41822586
yes
0
 
LVL 37

Expert Comment

by:ArneLovius
ID: 41822621
can you post a suitably sanitised full copy of the config
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 3

Author Comment

by:Shark Attack
ID: 41822624
yes, as soon as I can get back to the router I will, thanks
0
 
LVL 37

Accepted Solution

by:
ArneLovius earned 500 total points
ID: 41888297
How is this an "old question no longer relevant" when there was no response from the OP ?
0
 
LVL 3

Author Comment

by:Shark Attack
ID: 41888418
i no longer work there and have no access to equipment
0

Featured Post

Are You Headed to Black Hat USA 2017?

Getting ready for Black Hat next week? Kick things off with the WatchGuard Badge Challenge and test your puzzle and cipher skills. Do you have what it takes to earn our limited edition Firebox Badge? Get started today - https://crimsonthorn.net

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Getting to know the threat landscape in which DDoS has evolved, and making the right choice to get ourselves geared up to defend against  DDoS attacks effectively. Get the necessary preparation works done and focus on Doing the First Things Right.
In this blog we highlight approaches to managed security as a service.  We also look into ConnectWise’s value in aiding MSPs’ security management and indicate why critical alerting is a necessary integration.
If you're a developer or IT admin, you’re probably tasked with managing multiple websites, servers, applications, and levels of security on a daily basis. While this can be extremely time consuming, it can also be frustrating when systems aren't wor…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

617 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question