Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
905
Views
0
Helpful
3
Replies

Questions about Clientless SSL VPN Portals

Go to solution
webabc123
Level 1
Level 1

‎10-25-2014 12:25 PM - edited ‎02-21-2020 07:54 PM

If you are using the portal only for Remote Desktop RDP access, do you have to use the remote desktop plugin that works through your browser or can you also use a normal Remote Desktop RDP application running on your device once the connection is established?

 

Does clientless VPN through the web portal allow the same client checks for domain membership, mac address verification, certificate authentication etc that you can do when a client is using the AnyConnect client?

Do the client screening and web portal use rely on the connecting client having a Windows operating system and Java or ActiveX?

Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Marius Gunnerud
VIP
VIP

‎10-25-2014 01:04 PM

If you are using the portal only for Remote Desktop RDP access, do you have to use the remote desktop plugin that works through your browser or can you also use a normal Remote Desktop RDP application running on your device once the connection is established?

You will need to use the RDP plugin.  If you want to use the normal RDP application then you would need to use the AnyConnect VPN client.

Does clientless VPN through the web portal allow the same client checks for domain membership, mac address verification, certificate authentication etc that you can do when a client is using the AnyConnect client?

It does support certificate authentication.  As for domain membership checks, do you mean in regards to client authentication when using RADIUS or TACACS+? I don't believe MAC authentication is supported.

Do the client screening and web portal use rely on the connecting client having a Windows operating system and Java or ActiveX?

For clientless VPN the operating system is not relevant, however the browser is.  I believe the supported browser are Internet Explorer, Firefox and Safari.  Java is require.

http://www.cisco.com/c/en/us/td/docs/security/asa/asa83/asdm63/configuration_guide/config/vpn_proc.html

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful

Go to solution
Marius Gunnerud
VIP
VIP
In response to webabc123

‎10-25-2014 01:14 PM

Maybe I should have been a bit more clear.  Java is required for certain functions, but to connect to the clientless vpn it is not required.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Marius Gunnerud
VIP
VIP

‎10-25-2014 01:04 PM

If you are using the portal only for Remote Desktop RDP access, do you have to use the remote desktop plugin that works through your browser or can you also use a normal Remote Desktop RDP application running on your device once the connection is established?

You will need to use the RDP plugin.  If you want to use the normal RDP application then you would need to use the AnyConnect VPN client.

Does clientless VPN through the web portal allow the same client checks for domain membership, mac address verification, certificate authentication etc that you can do when a client is using the AnyConnect client?

It does support certificate authentication.  As for domain membership checks, do you mean in regards to client authentication when using RADIUS or TACACS+? I don't believe MAC authentication is supported.

Do the client screening and web portal use rely on the connecting client having a Windows operating system and Java or ActiveX?

For clientless VPN the operating system is not relevant, however the browser is.  I believe the supported browser are Internet Explorer, Firefox and Safari.  Java is require.

http://www.cisco.com/c/en/us/td/docs/security/asa/asa83/asdm63/configuration_guide/config/vpn_proc.html

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful

Go to solution
webabc123
Level 1
Level 1
In response to Marius Gunnerud

‎10-25-2014 01:14 PM

OK thanks.  With that answer, indirectly, operating system matters since Java is required.  You must have an operating system that runs Java which means no Chromebooks or Windows Surface (RT) tablets, iPads etc..

 

Also, you said to use an RDP client outside of the browser, AnyConnect client is required.  What about connecting with the native VPN client in Chromebooks and iOS?

0 Helpful

Go to solution
Marius Gunnerud
VIP
VIP
In response to webabc123

‎10-25-2014 01:14 PM

Maybe I should have been a bit more clear.  Java is required for certain functions, but to connect to the clientless vpn it is not required.

--

Please remember to select a correct answer and rate helpful posts

--
Please remember to select a correct answer and rate helpful posts
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents