Filter
Top Products
74-80
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter 74 Configuring Clientless SSL VPN
Configuring Portal Access Rules
1 With the Eudora e-mail client, SMTPS works only on port 465, even though the
default port for SMTPS connections is 988.
Configuring Web E-mail: MS Outlook Web App
The ASAsupports Microsoft Outlook Web App to Exchange Server 2010 and Microsoft Outlook Web
Access to Exchange Server 2007, 2003, and 2000. OWA requires that users perform the following steps:
Detailed Steps
Step 1 Enter the URL of the e-mail service into the address field or click an associated bookmark in the
clientless SSL VPN session.
Step 2 When prompted, enter the e-mail server username in the format domain\username.
Step 3 Enter the e-mail password.
Configuring Portal Access Rules
This enhancement allows customers to configure a global clientless SSL VPN access policy to permit or
deny clientless SSL VPN sessions based on the data present in the HTTP header. If the ASA denies a
clientless SSL VPN session, it returns an error code to the endpoint immediately.
The ASA evaluates this access policy before the endpoint authenticates to the ASA. As a result, in the
case of a denial, fewer ASA processing resources are consumed by additional connection attempts from
the endpoint.
Prerequisites
Log on to the ASA and enter global configuration mode. In global configuration mode, the ASA displays
this prompt:
hostname(config)#
Step 9
name-separator Defines the separator between the e-mail and VPN
usernames and passwords. The default is colon (:).
Step 10
outstanding Configures the maximum number of outstanding
non-authenticated sessions. The default is 20.
Step 11
port Sets the port the e-mail proxy listens to. The default
is as follows:
• IMAP4S:993
• POP3S: 995
• SMTPS: 988
1
Step 12
server Specifies the default e-mail server.
Step 13
server-separator Defines the separator between the e-mail and server
names. The default is @.
Command Purpose