cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3962
Views
0
Helpful
12
Replies

ASDM ver 6.2.1 and ASA IOS 8.2.1

john.wright
Level 3
Level 3

After upgrading my ASA to IOS version 8.2.1 and the ASDM to 6.2.1 I am unable to access via ASDM. If I drop back the ASA IOS to 8.0.4 I have no problem accessing with ASDM ver.6.2.1.

Any ideas what may be wrong?

I am running XP pro 2002 SP2 with Java Standard Ed 6 Update 7 on my laptop.

12 Replies 12

Collin Clark
VIP Alumni
VIP Alumni

You may have to re-create your SSH keys. Are you receiving an error or just the Page Can Not Be Found?

I get a warning msg that says," ASDM did not get a response from the ASA in the last 60 seconds. Pls check to see that the network connections are still up and try to reconnect by refreshing ASDM."

Then it gets an error msg that says the same thing as above.

FYI

The connections are up. And the GUI interface looks like its up but there are no managment capabilities.

Have you tried an HTTP DEBUG on the ASA?

Love that idea.

Let me see what I get.

I got it.

Suggestions on what to look for?

If the problem is with HTTP/S it should be pretty apparent. Something like TLS/cipher errors. Feel free to post the results.

Ok here is it.

This line concerns me-

HTTP: authentication required, no authentication information was provided

Can you post the results of the following commands?

show run asdm

show run http

show run username

We do not use username for access even in our production network. This asa that I am working with is in our lab. So there is no authentication of any type in place for the lab. I was trying to make sure that new image and new asdm would work once we deployed.

kbcuk1fw50# sh run asdm

asdm image disk0:/asdm-621.bin

asdm history enable

kbcuk1fw50# sh run http

http server enable

http 192.168.1.0 255.255.255.0 inside

http 0.0.0.0 0.0.0.0 inside

kbcuk1fw50# sh run user

kbcuk1fw50# sh run username

I'm confused now :-). You need to authenticate somehow?? I've never seen where you don't have to authenticate. Do you have some AAA commands entered? As a test can we add a local user?

username test password cisco123

aaa authentication http console LOCAL

Try ASDM-

In the production environment we have AAA

for radius server for vpn. but for access and control by an admin all we have is a password. No tacas or radius is required.

I did test with local user and it does the same thing. The gui interface comes up, it looks like your in but you cannot control anything.

trying adding privilege 15 to the end of the username command.

username password privilege 15

I eneded up taking this problem to TAC and they discovered a bug CSCsh91747.

But thanks for the suggestion.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: