07-24-2009 06:05 AM - edited 02-21-2020 03:35 AM
After upgrading my ASA to IOS version 8.2.1 and the ASDM to 6.2.1 I am unable to access via ASDM. If I drop back the ASA IOS to 8.0.4 I have no problem accessing with ASDM ver.6.2.1.
Any ideas what may be wrong?
I am running XP pro 2002 SP2 with Java Standard Ed 6 Update 7 on my laptop.
07-24-2009 08:08 AM
You may have to re-create your SSH keys. Are you receiving an error or just the Page Can Not Be Found?
07-24-2009 08:17 AM
I get a warning msg that says," ASDM did not get a response from the ASA in the last 60 seconds. Pls check to see that the network connections are still up and try to reconnect by refreshing ASDM."
Then it gets an error msg that says the same thing as above.
FYI
The connections are up. And the GUI interface looks like its up but there are no managment capabilities.
07-24-2009 08:19 AM
Have you tried an HTTP DEBUG on the ASA?
07-24-2009 08:24 AM
Love that idea.
Let me see what I get.
I got it.
Suggestions on what to look for?
07-24-2009 08:28 AM
If the problem is with HTTP/S it should be pretty apparent. Something like TLS/cipher errors. Feel free to post the results.
07-24-2009 08:36 AM
07-24-2009 08:43 AM
This line concerns me-
HTTP: authentication required, no authentication information was provided
Can you post the results of the following commands?
show run asdm
show run http
show run username
07-24-2009 08:55 AM
We do not use username for access even in our production network. This asa that I am working with is in our lab. So there is no authentication of any type in place for the lab. I was trying to make sure that new image and new asdm would work once we deployed.
kbcuk1fw50# sh run asdm
asdm image disk0:/asdm-621.bin
asdm history enable
kbcuk1fw50# sh run http
http server enable
http 192.168.1.0 255.255.255.0 inside
http 0.0.0.0 0.0.0.0 inside
kbcuk1fw50# sh run user
kbcuk1fw50# sh run username
07-24-2009 09:03 AM
I'm confused now :-). You need to authenticate somehow?? I've never seen where you don't have to authenticate. Do you have some AAA commands entered? As a test can we add a local user?
username test password cisco123
aaa authentication http console LOCAL
Try ASDM-
07-24-2009 09:20 AM
In the production environment we have AAA
for radius server for vpn. but for access and control by an admin all we have is a password. No tacas or radius is required.
I did test with local user and it does the same thing. The gui interface comes up, it looks like your in but you cannot control anything.
07-31-2009 12:59 PM
trying adding privilege 15 to the end of the username command.
username
08-03-2009 05:58 AM
I eneded up taking this problem to TAC and they discovered a bug CSCsh91747.
But thanks for the suggestion.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide