Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1544
Views
0
Helpful
3
Replies

ASA SSL VPN License

ge4sat
Level 1
Level 1

‎11-21-2006 07:56 AM - edited ‎03-11-2019 01:58 AM

I have a SSL-VPN licensed ASA and an Un-licensed one that I am trying to set as failover. How can I UN-license the primary from ssl vpn. It will not replicate the config unless I do

Labels:
0 Helpful
3 Replies 3

a.kiprawih
Level 7
Level 7

‎11-21-2006 08:50 AM

If I am not wrong, no option is available to UN-license or remove the SSl-VPN License. You need to get/upgrade to have similar feature.

But as specified in doc, you should have identical model & features/license in order to achieve/have failover.

*Check the Active/Standby & Active/Active requirements for PIX and ASA:

http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a008063b31a.html#wp1058096

"..Both units have the same hardware, software configuration, and proper license."

Hope this helps. Pls rate all useful post(s).

AK

0 Helpful

gabrielbryson
Level 1
Level 1
In response to a.kiprawih

‎09-13-2007 07:21 AM

I have just addes a 10 user SSL license to my failover pair (active/standby) of ASA's and have also lost failover, according to cisco logic you have to purchse 20 user licence's in order to only be able to use 10 concurrently in a failover pair.....

And if you apply the new key you cannot remove it, so you are forced to buy another 10 licenses, becuse your failover is gone...

Needless to say I am LIVVIDD

0 Helpful

andrew.burns
Level 7
Level 7

‎11-24-2006 08:43 AM

Hi,

It depends whether you bought the SSL-VPN license after buying the ASA or not. If you bought the license after the original purchase you should be able to simply re-apply the original activation key, which will restore the original features.

However, if you bought the license with the ASA (i.e. it's the only activation key you have) then you should try contacting Cisco. They could split your activation key into two new ones (a basic one and a SSL upgrade one) then you could apply just the basic one and still have the option of upgrading at a later date.

This is just a suggestion - I don't know whether Cisco would do this but as the keys are not transferable (they'll only work on the original box) I don't see why they wouldn't.

HTH

Andrew.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card