Clientless SSL VPN on a Cisco ASA 5520 help

whiteford · ‎10-31-2008

Hi,

I have not used clientless SSL VPN on my Cisco ASA 5520 before and wondered if it's as secure as the Cisco VPN client?

Basically I have this internal website that monitors all of our servers, Cisco routers, switches etc and I think in an emergency we would liek to be able to get this from where ever we are and not have to have the Cisco VPN client.

Currently we use the Cisco VPN client to gain access to our network for everything and it's great and wil use this 99% of the time, but the SSL method sounds great for our internal monitoring website.

At the moment I put in https://asaip then my Active Directory username and password and select the right group and I'm in. I see my bookmark and great I'm there.

I think I'm just concerend about the security as I have opened up SSL on the ASA's external IP and this is new to me, should this be ok? And are there any recommendations that I should apply?

Thanks

JORGE RODRIGUEZ · ‎10-31-2008

SSL is secure otherwise web banking would not be possible which is also SSL based , in any case read this thred ASK THE EXPERST on SSL VPN.

http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&forum=Expert%20Archive&topic=Virtual%20Private%20Networks&CommCmd=MB%3Fcmd%3Dpass_through%26location%3Doutline%40%5E1%40%40.2cc18a4d

Jorge Rodriguez

whiteford · ‎11-01-2008

Thanks, I will have a read now. Does the ASA create it's own SSL cert and do I have to keep renewing it?