Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

SSL VPN users only conenct on Protocol Encryption RC4 - why?

Hi,

My Clientless SSL VPN users only connect to my ASA on RC4 protocol encryption, is this ok? I want them to connect on AES 256 but they can't.

Actually 3DES-168 seems to work as well.

Thanks

4 REPLIES

Re: SSL VPN users only conenct on Protocol Encryption RC4 - why?

by default rc4-sha1 takes precedence

you can modify this behaviour by the command

"ssl encryption aes128-sha1 rc4-sha1 aes256-sha1 3des-sha1"

or use asdm

see the attachment

New Member

Re: SSL VPN users only conenct on Protocol Encryption RC4 - why?

Hi,

I tried that but I only ever conenct at RC4-Sha1, even when I put it at the end.

Why is this please?

Re: SSL VPN users only conenct on Protocol Encryption RC4 - why?

It would depend on your browser, wouldn't it?

Which one are you using?

Also what do you have checked under Tools >> Internet Options >> Advanced (SSL 2.0 / SSL 3.0 ?)

Regards

Farrukh

New Member

Re: SSL VPN users only conenct on Protocol Encryption RC4 - why?

I'm using IE7, under those options I have SSL 3.0, TSL 1.0 selected.

In the ASDM I have Server SSL verion set to any and Client SSL version set to any.

735
Views
0
Helpful
4
Replies