CSD On 871 router login fails

nielsw weel · ‎03-15-2010

Hi,

I’m pretty new on this item ore actualy on cisco.

Wel here we go I got a working anyconnect sslvpn connection. On top of that I also want a CSD Cisco secure desktop. Afther I installed the package the page for admin is up and running https://ip_nr/csd_admin.html the only problem I cant get in. I’m using the same credentials as I would to normaly login and that works fine by ssl and ssh. Can anybody help me out?

configuration:

aaa authentication login vpn-access local
aaa authorization exec vpn-access local
aaa authorization network vpn-access local

webvpn install svc flash:/webvpn/anyconnect-dart-win-2.3.2016-k9.pkg sequence 1
!
webvpn install csd flash:/webvpn/sdesktop.pkg
!
webvpn context webvpn
ssl authenticate verify all
!
policy group policy_webvpn
   functions file-access
   functions file-browse
   functions file-entry
   functions svc-enabled
   hide-url-bar
   timeout idle 300
   timeout session 36000
   svc address-pool "DHCP-SSL"
   svc keep-client-installed
default-group-policy policy_webvpn
aaa authentication list vpn-access
gateway VPN
max-users 10
csd enable
logging enable
inservice

Debug:

*Feb 12 23:11:35.656: AAA/AUTHOR: auth_need : user= '********' ruser= 'RTRWEEL'rem_addr= '10.10.10.10' priv= 15 list= '' AUTHOR-TYPE= 'command'
*Feb 12 23:11:35.660: AAA/AUTHOR: auth_need : user= '********' ruser= 'RTRWEEL'rem_addr= '10.10.10.10' priv= 15 list= '' AUTHOR-TYPE= 'command'
*Feb 12 23:11:46.331: %SSLVPN-5-SSL_TLS_CONNECT_OK: vw_ctx: UNKNOWN vw_gw: VPN i_vrf: 0 f_vrf: 0 status: SSL/TLS connection successful with remote at 10.10.10.10:57635
*Feb 12 23:11:46.331: WV: sslvpn process rcvd context queue event
*Feb 12 23:11:46.335: WV: sslvpn process rcvd context queue event
*Feb 12 23:11:46.339: WV: sslvpn process rcvd context queue event
*Feb 12 23:11:46.339: WV: Entering APPL with Context: 0x8537A7D8,
Data buffer(buffer: 0x85382A78, data: 0xB0E41D5, len: 825,
offset: 0, domain: 0)
*Feb 12 23:11:46.339: WV-AAA: Authentication Failed in sslvpn_csd_admin_logon_check!

*Feb 12 23:11:46.339: WV: [Q]Client side Chunk data written..
buffer=0x85382918 total_len=1009 bytes=1009 tcb=0x858A4ECC
*Feb 12 23:11:46.339: WV: [Q]Client side Chunk data written..
buffer=0x853828F8 total_len=1009 bytes=1009 tcb=0x858A4ECC
*Feb 12 23:11:46.339: WV: [Q]Client side Chunk data written..
buffer=0x85382938 total_len=1009 bytes=1009 tcb=0x858A4ECC
*Feb 12 23:11:46.343: WV: [Q]Client side Chunk data written..
buffer=0x85382958 total_len=1009 bytes=1009 tcb=0x858A4ECC
*Feb 12 23:11:46.343: WV: Client side Chunk data written..
buffer=0x85382978 total_len=920 bytes=920 tcb=0x858A4ECC
*Feb 12 23:11:46.343: WV: server side not ready to send.

*Feb 12 23:11:46.343: WV: server side not ready to send.

*Feb 12 23:11:46.351: WV: server side not ready to send.

*Feb 12 23:11:46.359: WV: sslvpn process rcvd context queue event
*Feb 12 23:11:46.375: WV: sslvpn process rcvd context queue event
*Feb 12 23:11:46.375: WV: Entering APPL with Context: 0x8537A148,
      Data buffer(buffer: 0x85382A78, data: 0xB00FAD5, len: 455,
      offset: 0, domain: 0)
*Feb 12 23:11:46.375: WV: http request: /paramdef.js with domain cookie
*Feb 12 23:11:46.375: WV: validated_tp : cert_username : matched_ctx :
*Feb 12 23:11:46.375: WV: Client side Chunk data written..
buffer=0x85382978 total_len=567 bytes=567 tcb=0x866972C8
*Feb 12 23:11:46.379: WV: sslvpn process rcvd context queue event
*Feb 12 23:11:46.379: WV: Entering APPL with Context: 0x8537A378,
      Data buffer(buffer: 0x85382A78, data: 0xAD06355, len: 451,
      offset: 0, domain: 0)
*Feb 12 23:11:46.379: WV: http request: /lang.js with domain cookie
*Feb 12 23:11:46.379: WV: validated_tp : cert_username : matched_ctx :
*Feb 12 23:11:46.383: WV: [Q]Client side Chunk data written..
buffer=0x85382978 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.383: WV: [Q]Client side Chunk data written..
buffer=0x85382958 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.383: WV: [Q]Client side Chunk data written..
buffer=0x85382938 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.383: WV: [Q]Client side Chunk data written..
buffer=0x853828F8 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.383: WV: [Q]Client side Chunk data written..
buffer=0x85382918 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: [Q]Client side Chunk data written..
buffer=0x85382998 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: [Q]Client side Chunk data written..
buffer=0x853829B8 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: [Q]Client side Chunk data written..
buffer=0x853829D8 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: [Q]Client side Chunk data written..
buffer=0x853829F8 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: [Q]Client side Chunk data written..
buffer=0x85382A18 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: [Q]Client side Chunk data written..
buffer=0x85382A38 total_len=1009 bytes=1009 tcb=0x8668CDB8
*Feb 12 23:11:46.387: WV: Client side Chunk data written..
buffer=0x85382A58 total_len=208 bytes=208 tcb=0x8668CDB8
*Feb 12 23:11:46.391: WV: sslvpn process rcvd context queue event

Fedor Chernyshev · ‎12-03-2013

By default, CSD is not configured with any default policies, and there must be at least one

Cisco Secure Desktop “location” and an associated policy in which to enable Cisco Secure

Desktop features. Configure CSD by connecting to the ISR with a browser using

HTTPS and requesting the csd_admin.html page. Authenticate to the page using the username

“admin” and the enable secret of your ISR as the password.

This is from manual. But it not works for me. I steel have login failed.