Cisco ASA WebVPN – Clientless SSL user sessions keeps dropping

55 pts.
Tags:
Cisco ASA
Firewall configuration
Firewalls
Network connectivity
Remote access
SSL
I am having an issue where a Cisco ASA configured with WebVPN (Clientless SSL) user access. Connection via NT domain authentication is successful, and it is possible to browse a CIFS share, however randomly (4 secs to about a minute) the session is terminated with an idle timeout message. I have captured a debug on the ASA and I have the following message: 'webvpn_session.c:http_webvpn_destroy_session[911]' The idle timeout has not been set so would default to the minimun of 30mins, therefore it is not this default idle timeout which is ending the session. Has anyone got WebVPN on an ASA working and/or had this issue? Ta.

Answer Wiki

Thanks. We'll let you know when a new response is added.

I have found the answer:
I tested an SSL clientless session using a local account and the session stayed active, I discovered that the problem was that the AD machine had been configured with a name (not IP address) and DNS was not set-up for clientless SSL user sessions, once this was updated on the ASA, the sessions stayed active using AD.

Discuss This Question: 1  Reply

 
There was an error processing your information. Please try again later.
Thanks. We'll let you know when a new response is added.
Send me notifications when members answer or reply to this question.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy
  • Dwiebesick
    Thank you for posting the fix. Too many times people do not take the time to give feed back like yours. This will allow someone in the future to search and hopefully find this answer.
    2,235 pointsBadges:
    report

Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to:

To follow this tag...

There was an error processing your information. Please try again later.

REGISTER or login:

Forgot Password?
By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Thanks! We'll email you when relevant content is added and updated.

Following